那些年我們一起開的搞笑地產公司五都法拍屋 9月爆量-歪樓篇

21310分

62781樓

個人積分：21310分

文章編號：68075001

NeverGiveUp!! wrote:
花要養好不容易．除了地形優勢外．好山好水好無聊．花形隨該地風氣聚集而起伏．微笑微笑微笑
而且我更認知到．這一切都是息關．有問題的人．會持續對某部分刻意放大．甚至它聚集的人事物．
花長得好不好看．若要看居家的水及空氣好不好．從種植物開始就能分明．也包括人的情緒氣息等．
該地的人好不好．水的感受最直接．能間接影響．是累積性的．更何況別篇在提的更年期更是鬼扯．
人會有累積性的．短期當然不會被注意．正確是平時就該注意．而不是等到發生了才拿出來當牽拖．
像我戒菸後．我都知道戒菸的情緒起伏．但平時就有在注意自己．於是等在那一念的來臨及時捕捉．
使得我情緒在戒菸後能完全不起伏．抽菸有菸品．喝酒有酒品．人做啥都有人品．但對某種形式上．
它卻不僅推翻了所有根據．正所謂身體凋零心不老．別讓所有的生理影響該有的健全心理而找藉口．
若更年期來出來論就放在上述的事件上面．那抽菸就不就沒菸品了．喝醉酒就隨便亂動怒沒酒品了．
該怪誰？怪更年期？還是說自己無法做到控制情緒上而藉機找到一種藉口？這樣就完整符合假掰論．
故我的結論就是．不管我身軀隨著時間而變化．唯一不會被改變就是人格（初衷）．

看來本版除了A佛,又出了位可以講經說道的猴佛....

初衷=>不變的目標核心.
觀照=>開啟內在的sensor時時客觀檢視內外在的偏差值有多少.降低主觀的比較諉過遷怒...等無意義的言行.
隨順精進=>因外在無常,內在身忙心亂,正常情況下雖然人有初衷,但其實一切都難以受控,所以也只能順遇而安了,但要不失精進.

KingDavid520

23726分

62782樓

KingDavid520

個人積分：23726分

文章編號：68076285

亮哥+ wrote:
平平一樣是手動倈卡...(恕刪)

DSC96113-2ps by CH Lin, 於 Flickr

economic

330480分

62783樓

economic

個人積分：330480分

文章編號：68076383

KingDavid520 wrote:
玫瑰盛開的季節 ...(恕刪)

可能看K大發太多漂亮的，這朵有點暗阿

一雙玉臂千人枕、半點朱唇萬客嚐，還君明珠雙淚垂、恨不相逢未嫁時

亮哥+

21310分

62784樓

亮哥+

個人積分：21310分

文章編號：68076520

KingDavid520 wrote:
DSC96113-2ps...(恕刪)

滿開之後,花容失色....

風韻猶存啊!

economic

330480分

62785樓

economic

個人積分：330480分

文章編號：68076577

亮哥+ wrote:
這要像K大這麼有閒...(恕刪)

找你來旁邊就能招蜂引蝶了 ^++^

一雙玉臂千人枕、半點朱唇萬客嚐，還君明珠雙淚垂、恨不相逢未嫁時

KingDavid520

23726分

62786樓

KingDavid520

個人積分：23726分

文章編號：68078284

亮哥+ wrote:
這要像K大這麼有閒...(恕刪)

今年時間確實會比較多

去年上半年遍訪名山，從塔塔加東埔山、武陵農場雪山登山口、合歡北峰，一直到三訪翠峰湖，還去走了難忘的710林道......
下半年走訪了溪流出海口，從濁水溪口、八掌溪口，一直到曾文溪口、二仁溪口尋覓黑面琵鷺蹤跡......

今年打算休息了，拍拍淡水山上的大冠鳩、鳳頭蒼鷹，養養花園裡的的花花草草就好

當然，最重要的是欣賞音樂，不然買了這麼多耳機要幹嘛？ ^++^

NeverGiveUp!!

45072分

62787樓

NeverGiveUp!!

個人積分：45072分

文章編號：68079307

ＡＢＣ各三版補進ＱｏＳ規則．以下行１００Ｍｂｐｓ／上行４０Ｍｂｐｓ作範例．

我會這樣設．下行１００個辣妹超過５０個辣妹被搭訕就會即刻打九折限流管妹．上行也如此類推．
對齁～少了Ｍａｎｇｌｅ．已補充．限流管妹站哨精準執行確保胎歌遵守行規．辣妹才能繼續賣笑．

/queue type
add kind=pcq name=PCQ_download pcq-classifier=dst-address
add kind=pcq name=PCQ_upload pcq-classifier=src-address
/queue simple
add burst-limit=40M/100M burst-threshold=20M/50M burst-time=1s/1s \
max-limit=36864000/92160000 name=queue1 priority=1/1 \
queue=PCQ_upload/PCQ_download target=192.168.88.0/24
/queue tree
add burst-limit=100M burst-threshold=50M burst-time=1s \
max-limit=92160000 name=queue1 packet-mark=client_download \
parent=bridge priority=1 queue=PCQ_download
add burst-limit=40M burst-threshold=20M burst-time=1s \
max-limit=36864000 name=queue2 packet-mark=client_upload \
parent=pppoe-out1 priority=1 queue=PCQ_upload
/ip firewall mangle
add action=mark-packet chain=prerouting in-interface=bridge \
new-packet-mark=client_upload passthrough=yes
add action=mark-packet chain=prerouting in-interface=pppoe-out1 \
new-packet-mark=client_download passthrough=yes

--
ＡＢＣ各三版終更正．尤其Ａ版是三版中超有安全感的版本．能避開暗流空中雷達與海底聲納偵測．
缺點是攻擊會多很多養樂多．若要tracert就把Jump for icmp output這條暫閉即可正常tracert．
這過程會遇到像是中繼ＡＰ會遭遇進階探測搞擠壓之類的或是牆上紀錄多了莫名其妙的滴滴歐欸屎．
這些全都是利用廣告通路．這三版都能防堵．只是ｉｃｍｐ．建議堵起來．他們中繼攻擊有所保留．
遇到三隻小豬就狂針對中繼很努力但沒用．最後根稻草只能藉合法廣告其一像是例如微軟贊助廣告．
這點相當聰明．不愧是廣告聯盟．股割就算了．股割已經是常態也能算變態．很喜歡搞變樁的狀態．
當他們其他方式都不行時．唯一就是剩下付錢的合法廣告能利用．他們不喜歡麻煩（買廣告植樁）．
麻煩是每個人都不喜歡遇到的．所以不要找我麻煩．就是常常找我麻煩．我就盡量讓他們自找麻煩．
時間的準星實實在在站在我這邊．說實在的．我到現在還是抱持感恩．時間守護神．謝謝祢．嘻嘻．
--
把上次下架的稍微修改．放回ＡＢＣ各三版．這樣就行了．

/ip firewall filter
add action=jump chain=forward comment="DDoS Detection and Blocking" \
connection-state=new jump-target=detect-ddos
add action=return chain=detect-ddos dst-limit=32,32,src-and-dst-addresses/10s
add action=add-dst-to-address-list address-list=ddosed address-list-timeout=\
10m chain=detect-ddos
add action=add-src-to-address-list address-list=ddoser address-list-timeout=\
10m chain=detect-ddos
/ip firewall mangle
add action=mark-routing chain=prerouting dst-address-list=ddosed \
new-routing-mark=ddoser-route-mark passthrough=no src-address-list=ddoser
/ip route
add distance=1 routing-mark=ddoser-route-mark type=blackhole

--
再來就是已用很久的．做辨識用的．例如：埠為１２３就直接標示ＮＴＰ之類的．類於情趣輔助用．

/ip firewall mangle
add action=jump chain=prerouting connection-state=new jump-target=\
tcp-services protocol=tcp
add action=jump chain=prerouting connection-state=new jump-target=\
udp-services protocol=udp
add action=jump chain=prerouting connection-state=new jump-target=\
other-services
add action=mark-connection chain=tcp-services dst-port=20-21 \
new-connection-mark=ftp passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=22 \
new-connection-mark=ssh passthrough=no protocol=tcp src-port=513-65535
add action=mark-connection chain=tcp-services dst-port=23 \
new-connection-mark=telnet passthrough=no protocol=tcp src-port=\
1024-65535
add action=mark-connection chain=tcp-services dst-port=25 \
new-connection-mark=smtp passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=53 \
new-connection-mark=dns passthrough=no protocol=tcp src-port=53
add action=mark-connection chain=tcp-services dst-port=53 \
new-connection-mark=dns passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=80 \
new-connection-mark=http passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=110 \
new-connection-mark=pop3 passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=113 \
new-connection-mark=auth passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=119 \
new-connection-mark=nntp passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=143 \
new-connection-mark=imap passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=161-162 \
new-connection-mark=snmp passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=443 \
new-connection-mark=https passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=465 \
new-connection-mark=smtps passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=993 \
new-connection-mark=imaps passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=995 \
new-connection-mark=pop3s passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=1723 \
new-connection-mark=pptp passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=2379 \
new-connection-mark=kgs passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=3128 \
new-connection-mark=proxy passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=3389 \
new-connection-mark=win-ts passthrough=no protocol=tcp src-port=\
1024-65535
add action=mark-connection chain=tcp-services dst-port=4242-4243 \
new-connection-mark=emule passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=1024-65535 \
new-connection-mark=overnet passthrough=no protocol=tcp src-port=\
4661-4662
add action=mark-connection chain=tcp-services dst-port=1024-65535 \
new-connection-mark=emule passthrough=no protocol=tcp src-port=4711
add action=mark-connection chain=tcp-services dst-port=5900-5901 \
new-connection-mark=vnc passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=6667-6669 \
new-connection-mark=irc passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=6881-6889 \
new-connection-mark=bittorrent passthrough=no protocol=tcp src-port=\
1024-65535
add action=mark-connection chain=tcp-services dst-port=8080 \
new-connection-mark=http passthrough=no protocol=tcp src-port=1024-65535
add action=mark-connection chain=tcp-services dst-port=8291 \
new-connection-mark=winbox passthrough=no protocol=tcp src-port=\
1024-65535
add action=mark-connection chain=tcp-services new-connection-mark=other-tcp \
passthrough=no protocol=tcp
add action=mark-connection chain=udp-services dst-port=53 \
new-connection-mark=dns passthrough=no protocol=udp src-port=1024-65535
add action=mark-connection chain=udp-services dst-port=123 \
new-connection-mark=ntp passthrough=no protocol=udp src-port=1024-65535
add action=mark-connection chain=udp-services dst-port=1701 \
new-connection-mark=l2tp passthrough=no protocol=udp src-port=1024-65535
add action=mark-connection chain=udp-services dst-port=4665 \
new-connection-mark=emule passthrough=no protocol=udp src-port=1024-65535
add action=mark-connection chain=udp-services dst-port=4672 \
new-connection-mark=emule passthrough=no protocol=udp src-port=1024-65535
add action=mark-connection chain=udp-services dst-port=1024-65535 \
new-connection-mark=emule passthrough=no protocol=udp src-port=4672
add action=mark-connection chain=udp-services dst-port=12053 \
new-connection-mark=overnet passthrough=no protocol=udp src-port=\
1024-65535
add action=mark-connection chain=udp-services dst-port=1024-65535 \
new-connection-mark=overnet passthrough=no protocol=udp src-port=12053
add action=mark-connection chain=udp-services dst-port=1024-65535 \
new-connection-mark=skype passthrough=no protocol=udp src-port=36725
add action=mark-connection chain=udp-services connection-state=new \
new-connection-mark=other-udp passthrough=no protocol=udp
add action=mark-connection chain=other-services icmp-options=8:0-255 \
new-connection-mark=ping passthrough=no protocol=icmp
add action=mark-connection chain=other-services new-connection-mark=gre \
passthrough=no protocol=gre
add action=mark-connection chain=other-services new-connection-mark=other \
passthrough=no

--
最後這再次說明．可以放很多其他的埠．比方說華碩路由中繼ＡＰ的埠９９９９．留一個伏筆護盾．
這有個好處就是給一般沒在注意中繼ＡＰ的．像是華碩韌體更新通知阿或久久沒去注意中繼ＡＰ者．
就能防堵有人針對華碩路由器的埠９９９９越權限或韌體隨著時日久遠遲遲沒去更新而致後門大開．
這就可以輔助使得中繼ＡＰ得到後盾．或是參考世界排名網站的榜埠做最新更新也是可以加進去的．
若滿了放不下就額外新增下列對抄．比方說紅文字標示的以此類推．有真正需要用到再這添加就好．
加的時候要注意就是．埠禁忌加８０，４４３，５３，１２３．之類常用埠．要進去這連結加才是．
埠相信？可以試試看．絕對會鎖死．這已是轉發最強的絕招．用於鎖特定專用埠這樣才能達到防堵．
其實正確的作法是１０２４以上的都給它鎖死．我們能用的就１０２４以下．再來鎖特定其他範圍．
就留幾個．其餘１０２４以上的不用在意．Ｌｉｎｅ或ＦＢ其他語音的通通都不能用僅純粹文字聊．
或者採取特定的時間管制與通訊埠來做個排程控管．這在ＲＯＳ都能做得到的．只是我還沒試這招．
ＦＢ要用另外一個腳本才能全防堵．有實驗過．非常成功．若多加股割拼湊雙防堵．世界就有救了．

/ip firewall filter
add action=drop chain=virus comment="Drop 9999(TCP)" \
dst-port=9999 protocol=tcp
add action=drop chain=virus comment="Drop 9999(UDP)" \
dst-port=9999 protocol=udp
add action=drop chain=virus comment="Drop OtherPorts(TCP)P1" \
dst-port=447,527,989,1106,2200,3543,4678,4963,5927,6270,6642,7374 \
protocol=tcp
add action=drop chain=virus comment="Drop OtherPorts(UDP)P1" \
dst-port=447,527,989,1106,2200,3543,4678,4963,5927,6270,6642,7374 \
protocol=udp
add action=drop chain=virus comment="Drop OtherPorts(TCP)P2" \
dst-port=8338,10072,10321,11544,12884,14305,14424,14580,14836,14856 \
protocol=tcp
add action=drop chain=virus comment="Drop OtherPorts(UDP)P2" \
dst-port=8338,10072,10321,11544,12884,14305,14424,14580,14836,14856 \
protocol=udp
add action=drop chain=virus comment="Drop OtherPorts(TCP)P3" \
dst-port=20015,31032,33435,33444,33446,33448-33452,38048,38076,38446,46323 \
protocol=tcp
add action=drop chain=virus comment="Drop OtherPorts(UDP)P3" \
dst-port=20015,31032,33435,33444,33446,33448-33452,38048,38076,38446,46323 \
protocol=udp
add action=drop chain=virus comment="Drop OtherPorts(TCP)P4" \
dst-port=46596,47985,49354,50002,50306,50690,50848,51001,51895,52360,54077 \
protocol=tcp
add action=drop chain=virus comment="Drop OtherPorts(UDP)P4" \
dst-port=46596,47985,49354,50002,50306,50690,50848,51001,51895,52360,54077 \
protocol=udp
add action=drop chain=virus comment="Drop OtherPorts(TCP)P5" \
dst-port=54478,57386,59063,5555,2375,2323,2000,808,636,389,81 \
protocol=tcp
add action=drop chain=virus comment="Drop OtherPorts(UDP)P5" \
dst-port=54478,57386,59063,5555,2375,2323,2000,808,636,389,81 \
protocol=udp

NeverGiveUp!! wrote:
ＡＢＣ各三版ＲＡＷ...(恕刪)

--

Irina Rimes - Beau | Official Video

人品是做人最好的底牌．

NeverGiveUp!!

45072分

62788樓

NeverGiveUp!!

個人積分：45072分

文章編號：68079410

除了紅字不準確．其餘都準確．

時時是不至於啦．是在進行式過程自然而進入檢視．

亮哥+ wrote:
看來本版除了A佛,又出了位可以講經說道的猴佛....
初衷=＞不變的目標核心.
觀照=＞開啟內在的sensor時時客觀檢視內外在的偏差值有多少.降低主觀的比較諉過遷怒...等無意義的言行.
隨順精進=＞因外在無常,內在身忙心亂,正常情況下雖然人有初衷,但其實一切都難以受控,所以也只能順遇而安了,但要不失精進.

--