MikroTik

Community discussions
https://forum.mikrotik.com/

Port isolating RB951G-2HnD

https://forum.mikrotik.com/viewtopic.php?t=151073

Page 1 of 1

Port isolating RB951G-2HnD

Posted: Mon Aug 12, 2019 8:33 pm
by mailalert
Hello,
I have RB951G-2HnD and I'd like to isolate port, but have no luck and dont know why. Here is my configuration (what I've changed in default conf):

/interface bridge settings
set use-ip-firewall=yes
/ip firewall address-list
add address=192.168.88.10-192.168.88.255 list=block
/ip firewall filter
add action=reject chain=forward dst-address-list=block reject-with=\
icmp-network-unreachable src-address-list=block

but I still can ping computers, so what's wrong?!

ps: I've used this tutorial> https://www.youtube.com/watch?v=UsgJFhkHB9g

Re: Port isolating RB951G-2HnD  [SOLVED]

Posted: Mon Aug 12, 2019 9:38 pm
by Link100
Bridge->Ports
and then select the port/etherX where the filter should be applied and disable Hardware Offload.

Works?

Re: Port isolating RB951G-2HnD

Posted: Mon Aug 12, 2019 10:07 pm
by mailalert
yeah! looks like working, thx!

but it is possible to configure one port (e.g. 2) for access all over network?

Re: Port isolating RB951G-2HnD

Posted: Mon Aug 12, 2019 11:09 pm
by Link100
Then you simply leave Hardware Offload enabled for Port 2.

Re: Port isolating RB951G-2HnD

Posted: Tue Aug 13, 2019 9:08 am
by mailalert
Then you simply leave Hardware Offload enabled for Port 2.
- I've did, but it didnt work .. but I will try again, thx!
All times are UTC+02:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/