MikroTik

HI...all
First I'm sorry cause my english not good...

I've a MT Versi 2.9.11
and I want to set my client have the public IP but limited...where their IP can't access from internet...
so can't be a server like web server, ftp server, etc...but still can access to the internet...
I've try to configure as I can, but still not found

I hope you can help me ....

thx b4

HI...all
First I'm sorry cause my english not good...

I've a MT Versi 2.9.11
and I want to set my client have the public IP but limited...where their IP can't access from internet...
so can't be a server like web server, ftp server, etc...but still can access to the internet...
I've try to configure as I can, but still not found

I hope you can help me ....

thx b4

You must setup a bridge, then on firewall you have to open or close the ports that you want.. read the manual and search the forums..

Regards

HI...all
First I'm sorry cause my english not good...

I've a MT Versi 2.9.11
and I want to set my client have the public IP but limited...where their IP can't access from internet...
so can't be a server like web server, ftp server, etc...but still can access to the internet...
I've try to configure as I can, but still not found

I hope you can help me ....

thx b4

You need to configure a bridge, in this way you can assign a public ip to any client and block ports in your MT.

Okay...tq b4 Mr.Cibernet and Mr.Raulborda

I think my question not connect with the answer...
Maybe cause my english to mussy

But...pleasing 4 me coz I've found the "rule"

I put this script and ..yeah...walking matching with the one which I wish

[admin@Gw] ip firewall filter> pr
Flags: X - disabled, I - invalid, D - dynamic
0 chain=forward in-interface=eth1 out-interface=eth0 src-address=xxx.xxx.xxx.xxx action=accept

1 chain=forward connection-state=established action=accept

2 chain=forward connection-state=related action=accept

3 chain=input connection-state=established action=accept

4 chain=input connection-state=related action=accept

5 chain=forward protocol=icmp action=accept

6 chain=forward connection-state=invalid action=drop

7 chain=forward action=drop


With that script, client where connect to router can access internet but can't access from internet ....

So their IP although "Public" but can't be a server....

Tq and tq again
With respon all of you I become to motivated

Okay...tq b4 Mr.Cibernet and Mr.Raulborda

I think my question not connect with the answer...
Maybe cause my english to mussy

But...pleasing 4 me coz I've found the "rule"

I put this script and ..yeah...walking matching with the one which I wish

[admin@Gw] ip firewall filter> pr
Flags: X - disabled, I - invalid, D - dynamic
0 chain=forward in-interface=eth1 out-interface=eth0 src-address=xxx.xxx.xxx.xxx action=accept

1 chain=forward connection-state=established action=accept

2 chain=forward connection-state=related action=accept

3 chain=input connection-state=established action=accept

4 chain=input connection-state=related action=accept

5 chain=forward protocol=icmp action=accept

6 chain=forward connection-state=invalid action=drop

7 chain=forward action=drop


With that script, client where connect to router can access internet but can't access from internet ....

So their IP although "Public" but can't be a server....

Tq and tq again
With respon all of you I become to motivated

Yes answer & question not are in the same topic
Your problem was other.
But if you founded a solution is good. Congratulations!!!!

Yes answer & question not are in the same topic
Your problem was other.
But if you founded a solution is good. Congratulations!!!!

he..he..he..
I lose face...
Ok...case closed...

I've another problem but I'm trying 1st...

Tq