脚本如下,可以10s一循环计划执行
:global tmpaaa [/ip firewall address-list find list=Not-To-Guowai];
foreach i in $tmpaaa do={
:global tmpbbb [/ip firewall address-list get number=$i address];
:global tmpccc [/ip firewall address-list find address=$tmpbbb list=To-Guowai];
/ip firewall address-list remove numbers=$tmpccc;
/ip firewall address-list remove numbers=$i;
}
下面是打标的命令
0 ;;; www.111.com
chain=prerouting action=add-src-to-address-list
src-address=!192.168.0.0/24 dst-address-list=111 address-list=To-Guowai
address-list-timeout=1h in-interface=bridge2-LAN log=no log-prefix=""
1 ;;; www.111.com, dns
chain=prerouting action=add-src-to-address-list
src-address=!192.168.0.0/24 dst-address-list=111 address-list=white-dns
address-list-timeout=1h in-interface=bridge2-LAN log=no log-prefix=""
2 ;;; www.000.com
chain=prerouting action=add-src-to-address-list
src-address=!192.168.0.0/24 dst-address-list=000
address-list=Not-To-Guowai address-list-timeout=1h
in-interface=bridge2-LAN log=no log-prefix=""
3 chain=prerouting action=mark-connection new-connection-mark=To-Guowai
passthrough=yes src-address-list=To-Guowai in-interface=bridge2-LAN
log=no log-prefix=""
4 chain=prerouting action=mark-routing new-routing-mark=To-Guowai
passthrough=no src-address-list=To-Guowai in-interface=bridge2-LAN log=no
log-prefix=""