Hi everybody.
I recently changed my mikrotik from software version 2.9.27 to routerboard 750 version 4.1
i configured everything and it is working fine except for the queues. in the old version i used to create this simple queue:
add name="employee name" target-addresses=192.168.40.x/32 dst-address=0.0.0.0/0 interface=Lan parent=none direction=both priority=8 queue=default/default limit-at=0/0 \
max-limit=64000/256000 total-queue=default disabled=no
add name="Closed Queue1k" target-addresses=0.0.0.0/0 dst-address=0.0.0.0/0 interface=Lan parent=none direction=both priority=8 queue=Closed/Closed limit-at=1000/1000 \
max-limit=1000/1000 total-queue=Closed disabled=no
the queue named "Closed Queue1k" is of type closed. this will prevent any ip of range 192.168.40.x to access internet if it is not listed in the simple queue above the "closed queue1k".
the problem i am facing is that in the router board 750 version 4.1 there is no queue type "Closed" when i to add new simple queue.
so any employee with the ip range 192.168.40.x can access internet this thing that must not happen.
so how this thing is implemented in this version.
any help is appreciated.
Re: queues routerboard 750
Make a firewall address list that contains the IPs that get Internet access:
Then make a firewall filter rule that drops traffic through the router coming into the interface called Lan if it's sourced from IP addresses not on that list:
That's just one of many approaches.
Code: Select all
/ip firewall address-list
add list=allowed-access address=192.168.40.10
add list=allowed-access address=192.168.40.20
add list=allowed-access address=192.168.40.21Code: Select all
/ip firewall filter
add chain=forward in-interface=Lan src-address-list=!allowed-access action=drop
Re: queues routerboard 750
Thank you a lot i will try it tomorrow at work and post the result. but i am sure it will work. thanks a lot
Who is online
Users browsing this forum: No registered users and 21 guests