disabling recursive querries on routerOS
Posted: Fri Apr 05, 2013 6:11 pm
by dadach
as it stands, its enabled, which can help attacker do DDoS from mikrotik IP.
how do i disable the recursive queries ability so that external attackers cant use it?
does disabling ALLOW REMOTE REQUESTS prevent recursive querries?
thanks
Re: disabling recursive querries on routerOS
Posted: Sat Apr 06, 2013 3:27 am
by CelticComms
Block external access to the DNS service using filters on the input chain. Your external interfaces should be blocking *all* input traffic except the few traffic types that you have allowed.
Re: disabling recursive querries on routerOS
Posted: Sat Apr 06, 2013 12:23 pm
by dadach
thanks. do i still need to do the filter chains if allow remote requests is turned off?
Re: disabling recursive querries on routerOS
Posted: Sat Apr 06, 2013 2:28 pm
by CelticComms
thanks. do i still need to do the filter chains if allow remote requests is turned off?
Switching remote requests off will stop network requests but I would still recommend that you check your input filters and make sure that you have appropriate input filters to control access to the router and its services. See info on links below:
http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Filter
http://wiki.mikrotik.com/wiki/Securing_ ... rOs_Router