It's crazy how this is still not fixed!

Ah, sorry - new-dst-ports=switch1-cpu is what you need. I forgot that you only needed to drop traffic from one external port to another.

I removed the accept rule and edited the original with "new-dst-ports=switch1-cpu" and now it works as intended.

Thank you, good sir.

As-is, the rule does not drop the matching frames but redirects them to CPU. To actually drop them, you should use new-dst-ports="" instead of redirect-to-cpu=yes . I used new-dst-ports="" and I had to add another rule before this one to allow users to reach the router 10.10.0.1...

Hello, I'm trying to add a switch rule but I'm not sure I'm using it correctly. I want to drop forward packets, I was using the Bridge filter before. but after I enabled HW-offload it stopped working. The bridge filter rule that I was using: /interface bridge filter add action=drop chain=forward com...

The requirement is not clear. The router provides services such as wireguard server for handshake, and there are ways to ensure that if traffic coming on WANX for that purpose goes out WANX. Its not clear to me thats what you mean?? It is rare to see input chain in mangling as that is traffic to th...

set the distance/cost of your preferred next-hop to 1 and the other remaining link to 2 in this way all traffic generated by the router itself will go to the default gateway with distance/cost of 1 no mangles involved, I hope this suffice enough to meet your requirement and use PBR to steer your tr...

Hello, Can the router be forced to use a specific WAN to reach the internet? I have ECMP load balancing configured with 2 ISPs (WAN2/WAN3) and a 3rd one (WAN1) which provides several static public IP addresses and I'm using that ISP for specific tasks as shown below in the mangle firewall rules. I k...

post your full config, hiding/redacting whatever you need to /interface bridge add add-dhcp-option82=yes admin-mac=9A:CC:88:CD:45:10 auto-mac=no \ dhcp-snooping=yes fast-forward=no igmp-snooping=yes name=bridge1 /interface list add comment=WAN name=Internet add name=LAN /interface bridge port add b...

A quick read would say that you haven't added a route for you fib 'to-wan2' in your routes .. why is that
intentional or mistake ?

It's added automatically via DHCP-Client script. You missed it.

Hello, I'm trying to configure PCC load balancing on my v7 Mikrotik but no luck so far. there's barely any traffic that goes through WAN2 if no traffic at all! when I disable WAN1 the traffic starts to go through WAN2 normally. WAN1 has a private static IP address with many public IP addresses to us...

Apparently, you and other people do not read #7 on same topic link you post. https://forum.mikrotik.com/viewtopic.php?p=931315#p931358 It doesn't work the way you think, so you don't get the results you think it should be, and if no one but @chechito has intervened, it's because not everyone wants ...

Apparently, other people are having the same problem and Mikrotik is not doing anything about it!

viewtopic.php?t=186460&sid=9af0c4e9d81f ... 04#p936864

viewtopic.php?p=931315#p930857

Hello I have 80Mb UP/DW dedicated bandwidth and I'm using simple queue to limit the bandwidth before my ISP does in an attempt to avoid bufferbloat. /queue simple add comment="Internet Traffic" max-limit=75M/75M name="Limit Bandwidth" target=\ 10.20.0.0/24 The problem is, I can s...

i see that rules OK only be sure your provider service have perfect performance and latency up to 200M including when you saturate that 200M with a lot of traffic your main objective will be to limit bandwidth before your provider does it so if your provider limits you on 200M maybe you have to lim...

This forum, man.

Hi I'm trying to give priority to gaming and I want to make sure that my config is correct. I've seen some people put the game server IP address in dst-address in both mark connection rules, and others in src-address in one rule and in dst-address in the second and I don't know which one is correct....

Can you assign bandwidths via user manager and hotspot?

I'm using an external billing system which assigns the bandwidth for clients.

Hello I'm running a small ISP with a billing system on a cloud server which creates dynamic queues to PPPoE-Hotspot clients. Some clients are asking for a dedicated bandwidth and I couldn't figure out how to do it. making a parent queue won't work because of the dynamic queues from the billing syste...