Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
B
B
bruges2019-02-05 17:11:05
Mikrotik
bruges, 2019-02-05 17:11:05

Mirkotik are L7 rules correct?

Greetings! To block unwanted sites, I use this regular expression to mark DNS queries.

/ip firewall layer7-protocol
add name=badsites regexp="^.+(vk.com|fb.com|ok.ru).*\$"

The specified domains are successfully blocked, but along with them are domains that end in the same characters, for example: vo vk.com , htmlbo ok.ru . In theory, the problem should have been solved by replacing ^.+(with ^(, but no. Then the blocking stops working altogether.
I would be grateful for a hint on how to correctly compose a regular season?

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
S
Soslan Khloev, 2019-02-05
@hloe0xff

Try this.^https\?://(www.)\?(vk.com|fb.com|ok.ru).*\$

Report
P
poisons, 2019-02-06
@poisons

Not the best solution, l7 percent is eating up noticeably. It's easier to add static dns records to unwanted domains pointing to 127.0.0.1.

Similar questions
D
den199482018-10-26 12:20:06
How to transfer firewall riles from windows server 2003 to mikrotik? 3Reply
D
Diman892014-04-10 15:25:00
Is this network design normal? 1Reply
A
Alexey Rusakov2016-06-03 09:40:54
How to cut off clients not bound by MAC in DHCP Mikrotik? 2Reply
O
Overtus2016-06-03 12:12:35
Port forwarding from one network to another on Mikrotik and ACS? 2Reply
L
Lasha2020-09-14 01:50:43
How to raise an IPSec Site to Site network through public IP addresses? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question