Hey there,

after a couple of hours, everything seems fine.

Managed to separate all Routerboard interfaces, set up some pppoe Servers, the User database and so on.

Everything seems fine, dispite of one thing....

I chose to set up three networks

10.1.1.0/24
10.1.2.0/24
10.1.3.0/24

for the three pppoe Servers.

On Ethernet 2 I got a static 10.10.10.1 Adress, which is connected to the manage Port of my switch, which has IP 10.10.10.2

I don't want the three PPPoE Networks to access the management Site neither of the routerboard, nor the switch.

Adding a firewall rule as " deny all traffic with target 10.10.10.1" does not work... traffic goes through (at least I wasn't locked out, though)

Despite that, how do I prioriise the filter rules in /firewall/Filter Rules? I mean... if the first rule says allow any traffic from anyone to port 80, the second rule "deny traffic to port 80 when source Network is 10.1.1.0/24 isn't
checked at all at the time, or is it?

Thanks a lot!

Cheers,

UG