firewall question?
Posted: Wed Mar 30, 2005 7:41 pm
Hi,
b4 I applied and filter rules I was able to use winbox as well as telnet from my local network into my router. After I applied this filter rules I am not able to use winbox nor telnet from my local network pc into my router. I have also setup maq. This is what I applied
/ip firewall rule input
add connection-state=invalid action=drop \
comment="Drop invalid connection packets"
add connection-state=established \
comment="Allow established connections"
add connection-state=related \
comment="Allow related connections"
add protocol=udp comment="Allow UDP connections"
add protocol=icmp comment="Allow ICMP messages"
add src-addr=68.57.*.*/22 \
comment="Allow access from 'trusted' network 68.57.*.*/22"
add action=drop log=yes \
comment="Reject and log everything else"
The 68.57.*.*/22 is the providers network. My local interface Ip is
192.168.111.*/24
Do I have to use my local network Ip instaed of my isp network?
Any help will be appreciated
ThX
b4 I applied and filter rules I was able to use winbox as well as telnet from my local network into my router. After I applied this filter rules I am not able to use winbox nor telnet from my local network pc into my router. I have also setup maq. This is what I applied
/ip firewall rule input
add connection-state=invalid action=drop \
comment="Drop invalid connection packets"
add connection-state=established \
comment="Allow established connections"
add connection-state=related \
comment="Allow related connections"
add protocol=udp comment="Allow UDP connections"
add protocol=icmp comment="Allow ICMP messages"
add src-addr=68.57.*.*/22 \
comment="Allow access from 'trusted' network 68.57.*.*/22"
add action=drop log=yes \
comment="Reject and log everything else"
The 68.57.*.*/22 is the providers network. My local interface Ip is
192.168.111.*/24
Do I have to use my local network Ip instaed of my isp network?
Any help will be appreciated
ThX