I want to block this IP - so I will not send to him any data
so I did this
Code: Select all
chain=output action=drop dst-address=162.222.215.38 log=no log-prefix=""Thanks ,
how do I block upload to IP
I see my router is uploading to Ip I don't know
I want to block this IP - so I will not send to him any data
so I did this
is it good? or do I need to use reject?
Thanks ,
I want to block this IP - so I will not send to him any data
so I did this
Thanks ,
Re: how do I block upload to IP
Simply:
Code: Select all
/ip firewall filter
add chain=forward dst-address=162.222.215.38 action=drop
Re: how do I block upload to IP
well maybe i have another problem
I have connected my RB to a modem and coonet to him using pppoe-out
nothing is connected to the RB , only a computer in the same network without gateway
so the computer doesn't do to the internet
but i have in the Tx 4-8M - it's like someine is downloading from me something
how can i see which IP and block it?
I have connected my RB to a modem and coonet to him using pppoe-out
nothing is connected to the RB , only a computer in the same network without gateway
so the computer doesn't do to the internet
but i have in the Tx 4-8M - it's like someine is downloading from me something
how can i see which IP and block it?
Re: how do I block upload to IP
probably you have open the DNS service to the world...well maybe i have another problem
I have connected my RB to a modem and coonet to him using pppoe-out
nothing is connected to the RB , only a computer in the same network without gateway
so the computer doesn't do to the internet
but i have in the Tx 4-8M - it's like someine is downloading from me something
how can i see which IP and block it?
Re: how do I block upload to IP
just like this ? it opened?
how did i do this?
also (and more importent ) how do I close it?
how did i do this?
also (and more importent ) how do I close it?
Re: how do I block upload to IP
Default firewall rules protect ether1-gateway from the internet. However, when you switch to PPPoE, the wan interface becomes pppoe1-out - if you don't go update your firewall rules to protect the pppoe1-out interface, then you're running vulnerable to such things as DNS ddos attacks.
I suspect that if you set pppoe mode in the quickset wizard, everything would be done automatically, but if you manually create the pppoe interface, test it, find it doesn't quite work, and then find the NAT rule to fix - when things then start working, you feel that you're done, but the firewall still needs to be fixed....
It's a common problem on here.
I suspect that if you set pppoe mode in the quickset wizard, everything would be done automatically, but if you manually create the pppoe interface, test it, find it doesn't quite work, and then find the NAT rule to fix - when things then start working, you feel that you're done, but the firewall still needs to be fixed....
It's a common problem on here.
Re: how do I block upload to IP
so for now I have block udp port ,
and I see it O.K.
is there any way to know in which port there are trying to "attack" and block it?
for now all udp is close , and evryone who is trying to reach udp get block
but maybe some day i will need the udp - so I want to blcok only those who interfere me
Thanks ,
and I see it O.K.
is there any way to know in which port there are trying to "attack" and block it?
for now all udp is close , and evryone who is trying to reach udp get block
but maybe some day i will need the udp - so I want to blcok only those who interfere me
Thanks ,
Re: how do I block upload to IP
well im usually looking at log (log for rule that important)
Re: how do I block upload to IP
If input chain says:
Allow established,related
Allow ICMP
Drop in-interface=pppoe1-out
(3 rules in that exact order)
Then you'll be safely blocking everything from the Internet - including DNS queries- but allowing anything that's a reply for something the Mikrotik requested.
Nice and easy.
Allow established,related
Allow ICMP
Drop in-interface=pppoe1-out
(3 rules in that exact order)
Then you'll be safely blocking everything from the Internet - including DNS queries- but allowing anything that's a reply for something the Mikrotik requested.
Nice and easy.
Re: how do I block upload to IP
agree with thisIf input chain says:
Allow established,related
Allow ICMP
Drop in-interface=pppoe1-out
(3 rules in that exact order)
Then you'll be safely blocking everything from the Internet - including DNS queries- but allowing anything that's a reply for something the Mikrotik requested.
Nice and easy.
simple, nice and easy
Re: how do I block upload to IP
when I torch and see the IP - that mean how is trying to coonnect to my right now ?
so I have a question about it
I can see that 91.135.100.100 is connecting in FTP (trying)
but my RB is not open to FTP
so how could it try?
or it just show me "someon is trying yo connect using ftp"?
Thanks ,
so I have a question about it
I can see that 91.135.100.100 is connecting in FTP (trying)
but my RB is not open to FTP
so how could it try?
or it just show me "someon is trying yo connect using ftp"?
Thanks ,
Re: how do I block upload to IP
That's all it is - your router's firewall isn't a force field that prevents packets from even reaching the router at all - the TCP/SYN packet (requesting a new connection) will reach your router - and the firewall will examine the packet and discard it, or if it's allowed by the firewall, the packet will be passed up the IP stack, where TCP will realize that your router isn't even listening on port 21, so the packet will ultimately not do anything - but torch doesn't looks for things like "this packet works / this packet is discarded by firewall" - it simply counts packets that arrive on the wire, no matter what the packets' ultimate fate might be.or it just show me "someon is trying yo connect using ftp"?
Thanks ,
Re: how do I block upload to IP
Now I understand
Thanks ,
Thanks ,