MikroTik

hi
i have a problem and i need help guys to solve it
i have already a pppoe server running and all good except i want my users
to take only this ports : 80 , 1863 , 6667-7000
i tried to configure it in firewall but i dont success
if any one can help plz and thanks

hi there.

Im not sure. Youre wanna permitt only for those ports and drop everything other? Whase problem? I have similary configuration at my company. Users can only using on selected ports and all other are dropped. I using rules in firewall forward. Have few rules. Just all packets from specific valid ip (takes from ip address lists) accept to destination on selected protocol to destination port. Im leasy and returns packet are permitted on all ports to valid ip. Sorry for bad language but english isnt my native.

D.

Gotmoh can u provide with your configuration and a backup plz for it
plz send it to my mail lookinsideme@gmail.com and i will be appreciate .

It's really simple... Don't see what you could be battling with.
A basic rule like that to allow all your clients to each outbound port you want to allow, then
To reject any data being forwarded that is not explicitly allowed by your forwarding rules...

Nothing hard about it

--
C

Email sent to you Ramona.

better `drop` not `reject`.

thanks for help guys

better `drop` not `reject`.

That's really a matter of personal opinion. Drop will cause delays on clients as clients will wait for a timeout. Reject will inform the client the connection is rejected, and a immediate error is given - in exchange for a ICMP message -g-

Router wise yes, Drop is less work and quicker, but to be user friendly, a reject is much more informative.