Hi all,

I filtered "input" traffic to drop all packets to all ports except to port 80,110,25 and some others.
But still getting these intruder alert from Black Ice firewall at my PC.
How to refine the filter so these intruder can not passed the MK firewall ?
Thanks.
====
Time, Event, Intruder, Count
3/11/2006 5:08:54 PM, Image_ICON_Malformed, 202.158.66.200, 1
3/11/2006 5:02:13 PM, HTTP_IE_Status_Spoof, dhe-202-67-9-98.dhecyber.net.id, 3
3/10/2006 11:04:10 PM, Image_ICON_Malformed, 202.158.66.200, 1
3/8/2006 12:13:55 PM, Image_ICON_Malformed, overclockersclub.com, 1
3/8/2006 9:54:02 AM, Image_ICON_Malformed, 202.158.66.200, 1
3/8/2006 5:13:26 AM, Image_ICON_Malformed, 202.158.66.200, 1
3/7/2006 8:12:15 PM, HTTP_IE_Status_Spoof, dhe-202-67-9-98.dhecyber.net.id, 6
3/7/2006 4:58:34 PM, Application Terminated, 0.0.0.0, 1
3/6/2006 7:41:55 PM, Image_ICON_Malformed, 195-14-0-190.nuxit.net, 1
3/6/2006 7:41:40 PM, HTTP_Favorites_Icon_Overflow, 195-14-0-190.nuxit.net, 1
3/6/2006 7:27:01 PM, Image_ICON_Malformed, overclockersclub.com, 1

'input' chain filters traffic directed to the router,
I suppose you need to use chain=forward ?

'input' chain filters traffic directed to the router,
I suppose you need to use chain=forward ?

Hi.
Thanks for your help.
I try this and so far no intruder detected at Black Ice

Any idea how I can block traffic from porno sites or any traffic with pornos content ?

Thanks.

I suppose, one of the ways how to block specific content traffic is transparent web-proxy.
Setup denying rules for specific traffic,
http://www.mikrotik.com/docs/ros/2.9/ip/webproxy