MikroTik

Is it normal for my RB1100AHx2 to ping the gateway even though check gateway is not enabled, i.e. not set to ping or arp.

Maybe you have netwatch enabled ?

Maybe you have netwatch enabled ?

No not enabled, as far as I am aware, I have nothing enabled that should be pinging the gateway.

I am getting hammered with pings from Iranian and German IP addresses as well.

So stop responding to them..

So stop responding to them..

That is why I am trying to block pings, as posted elsewhere on this site, every time I try to block pings or turn off icmp type 0, echo reply, the internet stops working and all my customers PPPoE connections start dropping out.

At the moment it is restricted to 5

And the echo is blocked for those attacking IP addresses.

Is your current solution acceptable for you or still not so much?

Is your current solution acceptable for you or still not so much?

I would like to block all ping replies but no solution offered on the forum sees to work, everything tried so far stops the internet working.

this should drop all pings without affecting your internet connection:

this should drop all pings without affecting your internet connection:

Code: Select all

/ip firewall filter add action=drop chain=input comment=Ping protocol=icmp

Re-checking the logs, it is replying to the gateways ping on the wan, if I block this ping the internet stops working, I can block all ping from elsewhere as long as I put in an accept rule for the gateway pings.

I am sure suppliers should not be doing this as anyone else noticed this happening?

It depends on your agreement with the isp. Kindly get in touch with them and clarify your needs and their approach. I am sure you can reach a working result.

It depends on your agreement with the isp. Kindly get in touch with them and clarify your needs and their approach. I am sure you can reach a working result.

I have, it is what they do and there was nothing in the agreement about this.

My last question was has anybody else come across this?.

I do not consider "kindly get in touch with supplier" a helpful answer, if you have nothing helpful to offer I would rather you did not add any comments at all, trolling is not helpful

I do not consider "kindly get in touch with supplier" a helpful answer

That seems to be the only possible relevant answer, to be honest. Constantly pinging client's IP address is not usually required, still your ISP may have its own valid reasons for doing that. After all, there's nothing criminal in doing so. The only way to discover why your ISP pings you constantly is to go and ask them directly. No Other Way. Period.

The original post says that your router is pinging the gateway. Then later you say that somebody else (from iran) is pinging your router. Which one is it?

The original post says that your router is pinging the gateway. Then later you say that somebody else (from iran) is pinging your router. Which one is it?

It all started because of flood pings from Iran and Germany slowing down the network.

According to the logs it initially looked as if the RB was pinging the gateway that is because of the way they are written out, then I noticed that it was type 0 a reply, so checked logs for type 8 request from gateway and yes it was the gateway pinging the RB but when I put block rule on WAN, the internet went off and all my PPPoE users connection started dropping out.

**I have never come across blocking ping replies on WAN causing internet drop out, so I had not got a clue at first what was going on.

In the meantime I just blocked ping replies to the attackers.

Once I new it was pings from the gateway I contacted supplier, they confirmed that they do ping it and if it gets block the internet may not work, they only said may not work.

Once I new this I put in an accept rule for the gateway and an accept with limit rule for everything else to put a load on their device.

There is now a full block rule on for everything else except the gateway.

***I still have no idea why the block rule should stop the internet and cause PPPoE connections to drop

Ok it is clear now. Well, it looks like this is the ISP policy, nothing the router is causing. I also can't imagine how the firewall for ping could affect your connection, unless somebody on the ISP side is intentionally checking this

Me neither but it does stop it and causes all PPPoE connections to drop, hence the panic