منم اين مشكل مسخره رو داشتم . مال اين worm هاي بي پدر مادره .
يه access-list تعريف كردم رديف شد.
اينم دستوراتش:
>access-list 130 deny udp any any eq netbios-ns
>access-list 130 deny tcp any any eq 135
>access-list 130 deny tcp any any eq 4444
>access-list 130 permit ip any any
>access-list 131 permit icmp any any echo
>access-list 131 permit icmp any any echo-reply
>access-list 131 deny icmp any any
>route-map NachiWrom permit 7
match ip address 131
match length 90 4096
set interface Null0
>interface Group-Async1
ip policy route-map NachiWorm
ip access-group 130 in
ip access-group 130 out
* if you have LAN users set
>interface FastEthernet0
ip policy route-map NachiWorm
ip access-group 130 in
ip access-group 130 out