MikroTik

i have these following rules

15 ;;; drop todo el ares de 4pm a 11pm
chain=forward src-address=192.168.10.0/24 p2p=warez
time=16h-23h59m,sat,fri,thu,wed,tue,mon,sun action=drop
DROP ARES BETWEEN 4PM-11PM
16 ;;; botar p2p de 8am a 10pm
chain=forward src-address=192.168.10.0/24 icmp-options=0:0 p2p=all-p2p
time=10h-21h59m,sat,fri,thu,wed,tue,mon,sun action=drop
DROP ALL P2P BETWEEN 8AM -10PM
17 ;;; aceptar p2p de 0am a 8am
chain=forward icmp-options=0:0 p2p=all-p2p
time=0s-7h59m,sat,fri,thu,wed,tue,mon,sun action=accept
ALLOW ALL P2P BETWEEN 00:00 TO 7:59AM

PROBLEM IS THAT DONT KNOW WHAT ORDER IS CORRECT BUT IT WILL ONLY DROP ARES AND P2P WITHOUT TIME INTERVAL..
ALSO IF I MOVE ACCEPT ALLP2P RULE UP WHICH SHOULD WORK JUST IN ITS TIME RANGE IT WILL ACCEPT ALL P2P ALL DAY AND WONT OBEY TIME RANGE I HAVE SET..

PLEASE HELP ME CAUSE P2P ARE KILLING MY AP.

Sorry but I don’t understand your question fully!



If I don’t wrong you want this!

You have priority numbers 0,1,2,3,...
0 is height
3 is lower

0 will be accept rule (ALLOW ALL P2P BETWEEN 00:00 TO 7:59AM)
1 will be drop rule (totally drop of P2P)

You can add more accept rules !!! place before 1 !!!

And you can add this:
/ip firewall filter
add chain=forward protocol=tcp p2p=all-p2p connection-limit=10,32 action=accept comment="" disabled=no

Connection limit for P2P connections in every second!




I hope that I help you!


Best regards,
Mladen Colic

i want to drop in time range but now is not working,, it only drops if i dont put time range

Ok

I see that I must write the script.
Try this!

You can also add another chain for p2p as
add chain=forward p2p=all-p2p action=jump jump-target=p2p

Then you can add any p2p rule there.

It will seperate your p2p rule from others.

Rafiq...