Community discussions

MikroTik App
  4. RouterOS
  5. General

Take this advise about firewall rules

Post Reply
 
weller
just joined
Topic Author
Posts: 12
Joined: Fri Feb 09, 2007 7:58 am
Location: Iraq

Take this advise about firewall rules

Mon Mar 19, 2007 3:08 pm

Hi guys,
when modifying a firewall rule under filter, nat, mangle, don't forget to disable and enable that rule after setting/modifying .... I noticed sometimes the rules behave stangely or improperly after modification unless I disable then enable it again.

Cheers :wink:
Top
 
User avatar
mneumark
Member
Member
Posts: 370
Joined: Thu Jun 08, 2006 7:20 am
Location: Escalon, CA
Contact:
Contact mneumark

Tue Mar 20, 2007 7:25 am

I've also seen this in 2.9.x with OSPF "ip adddresses" If you make a change to one you need to disable and enable it to take effect in the "ip address"
Top
 
changeip
Forum Guru
Forum Guru
Posts: 3833
Joined: Fri May 28, 2004 5:22 pm

Re: Take this advise about firewall rules

Tue Mar 20, 2007 6:24 pm

Hi guys,
when modifying a firewall rule under filter, nat, mangle, don't forget to disable and enable that rule after setting/modifying .... I noticed sometimes the rules behave stangely or improperly after modification unless I disable then enable it again.

Cheers :wink:
Which version? This isn't normal.
Top
 
changeip
Forum Guru
Forum Guru
Posts: 3833
Joined: Fri May 28, 2004 5:22 pm

Tue Mar 20, 2007 6:24 pm

I've also seen this in 2.9.x with OSPF "ip adddresses" If you make a change to one you need to disable and enable it to take effect in the "ip address"
which version?
Top
 
Ghassan
Member Candidate
Member Candidate
Posts: 213
Joined: Mon May 29, 2006 11:08 pm
Location: Lebanon
Contact:
Contact Ghassan

Tue Mar 20, 2007 11:01 pm

also I noticed something with Mikrotik ...

when you have 3 interfaces .. 2 isp links

so when you disable one of them , you may have alot of problems especially for routing , so disabling the two interfaces and enable them again or restarting it will fix routing issues .
Top
 
changeip
Forum Guru
Forum Guru
Posts: 3833
Joined: Fri May 28, 2004 5:22 pm

Wed Mar 21, 2007 1:12 am

also I noticed something with Mikrotik ...

when you have 3 interfaces .. 2 isp links

so when you disable one of them , you may have alot of problems especially for routing , so disabling the two interfaces and enable them again or restarting it will fix routing issues .
I think this has to do with established connections in the connections table ... seems like they stick to a specific route even if it's unavailable. I have seen that before - removing them from the connection table allowed it to work again without restarting. Not sure why connection table has anything to do with routing however.

Sam
Top
 
User avatar
mneumark
Member
Member
Posts: 370
Joined: Thu Jun 08, 2006 7:20 am
Location: Escalon, CA
Contact:
Contact mneumark

Wed Mar 21, 2007 5:47 am

I've also seen this in 2.9.x with OSPF "ip adddresses" If you make a change to one you need to disable and enable it to take effect in the "ip address"
which version?
I have 2.9.39 on the machine that did that.
Top
 
User avatar
janisk
MikroTik Support
MikroTik Support
Posts: 6263
Joined: Tue Feb 14, 2006 9:46 am
Location: Riga, Latvia

Wed Mar 21, 2007 12:42 pm

maybe you are using load balancing with persistent sessions? :roll:
Top
 
weller
just joined
Topic Author
Posts: 12
Joined: Fri Feb 09, 2007 7:58 am
Location: Iraq

Wed Mar 21, 2007 12:44 pm

i noticed that on 2.9.39
Top
 
jrogatis
just joined
Posts: 16
Joined: Thu Sep 21, 2006 7:34 pm
Location: São Paulo, Brazil
Contact:
Contact jrogatis

Wed Mar 21, 2007 1:16 pm

the same with ver 2.9.40 in simple queues and VRRP address, and inerface address.
Top
 
User avatar
mneumark
Member
Member
Posts: 370
Joined: Thu Jun 08, 2006 7:20 am
Location: Escalon, CA
Contact:
Contact mneumark

Thu Mar 22, 2007 8:44 am

maybe you are using load balancing with persistent sessions? :roll:
Janisk i don't use load balancing.
Top
Post Reply

Who is online

Users browsing this forum: No registered users and 35 guests
  4. RouterOS
  5. General