Community discussions

MikroTik App
  4. RouterOS
  5. Beginner Basics

Can't Access Router.

Locked
 
User avatar
DannyZ
Member Candidate
Member Candidate
Topic Author
Posts: 230
Joined: Mon Sep 07, 2009 2:21 pm
Location: Latvia

Can't Access Router.

Sun Jan 17, 2010 4:09 pm

Hi.

Have some problem with access to router. After i set firewall rules:
Code: Select all
 0   ;;; Established Connections
     chain=input action=accept connection-state=established 

 1   ;;; Related Connections
     chain=input action=accept connection-state=related 

 2   ;;; Log Invalid Connections
     chain=input action=log connection-state=invalid log-prefix="INVALID" 

 3   ;;; Drop Invalid Connections
     chain=input action=drop connection-state=invalid 

 4   ;;; !!! Check For Well-Known Viruses !!!
     chain=input action=jump jump-target=virus 

 5   ;;; UDP
     chain=input action=accept protocol=udp 

 6   ;;; ICMP
     chain=input action=accept protocol=icmp 

 7   ;;; Allow PPTP
     chain=input action=accept protocol=tcp dst-port=1723 

 8   ;;; Allow PPTP
     chain=input action=accept protocol=gre 

 9   ;;; Allow OSPF
     chain=input action=accept protocol=ospf 

15   ;;; Log Invalid Connections
     chain=forward action=log connection-state=invalid log-prefix="INVALID" 

16   ;;; !!! Check For Well-Known Viruses !!!
     chain=forward action=jump jump-target=virus 

17   ;;; UDP
     chain=forward action=accept protocol=udp 

18   ;;; ICMP
     chain=forward action=accept protocol=icmp 

19   ;;; Drop Blaster Worm
     chain=virus action=drop protocol=tcp dst-port=135-139 

20   ;;; Drop Messenger Worm
     chain=virus action=drop protocol=udp dst-port=135-139 

21   ;;; Drop Blaster Worm
     chain=virus action=drop protocol=tcp dst-port=445 

22   ;;; Drop Messenger Worm
     chain=virus action=drop protocol=udp dst-port=445 

23   ;;; .................
     chain=virus action=drop protocol=tcp dst-port=593 

24   ;;; .................
     chain=virus action=drop protocol=tcp dst-port=1024-1030 

20   ;;; Drop Messenger Worm
     chain=virus action=drop protocol=udp dst-port=135-139 

21   ;;; Drop Blaster Worm
     chain=virus action=drop protocol=tcp dst-port=445 

22   ;;; Drop Messenger Worm
     chain=virus action=drop protocol=udp dst-port=445 

23   ;;; .................
     chain=virus action=drop protocol=tcp dst-port=593 

24   ;;; .................
     chain=virus action=drop protocol=tcp dst-port=1024-1030
I'm not able to access router from my PC, I can access it only from local network. I have tried Telnet, SSH, FTP, Webbox, Winbox. Nothing. IP Sevices are active and allowed IP are default (0.0.0.0/0)
Last edited by DannyZ on Sun Jan 17, 2010 8:05 pm, edited 1 time in total.
Top
 
marinpareja
just joined
Posts: 21
Joined: Sat Aug 22, 2009 6:53 pm
Location: Sevilla, Spain

Re: Can't Access Router.

Sun Jan 17, 2010 7:44 pm

Between 4 and 5 put the next:

/ip firewall filter

5 ;;; SSH for secure shell
chain=input action=accept protocol=tcp dst-port=22

6 ;;; WWW
chain=input action=accept protocol=tcp dst-port=80

7 ;;; Dude Server
chain=input action=accept protocol=tcp dst-port=2210

8 ;;; Dude Server
chain=input action=accept protocol=tcp dst-port=2211

9 ;;; winbox
chain=input action=accept protocol=tcp dst-port=8291
Top
 
User avatar
DannyZ
Member Candidate
Member Candidate
Topic Author
Posts: 230
Joined: Mon Sep 07, 2009 2:21 pm
Location: Latvia

Re: Can't Access Router.

Sun Jan 17, 2010 7:54 pm

Okey, will try it tomorrow. Thanks a lot.
Top
Locked

Who is online

Users browsing this forum: No registered users and 46 guests
  4. RouterOS
  5. Beginner Basics