![]() It allows ping to your router from outside, access to it from interfaces in interface-list=LAN and dropping everything from interface-list=WAN, that was not subjected to dst-nat (port forwarding). Or am I wrong and there are some basic rules that are just automatically on and I don't see them? Or heck do I need to add any rules since I'm in a basic home environment and getting a dynamic address from my ISP? I'm a super noob so please forgive me.Īdd action=accept chain=input comment="accept established,related,untracked" connection-state=established,related,untrackedĪdd action=drop chain=input comment="drop invalid" connection-state=invalidĪdd action=accept chain=input comment="accept ICMP" protocol=icmpĪdd action=drop chain=input comment="drop all not coming from LAN" in-interface-list=!LANĪdd action=accept chain=forward comment="accept established,related, untracked" connection-state=established,related,untrackedĪdd action=drop chain=forward comment="drop invalid" connection-state=invalidĪdd action=accept chain=forward comment="accept in ipsec policy" ipsec-policy=in,ipsecĪdd action=accept chain=forward comment="accept out ipsec policy" ipsec-policy=out,ipsecĪdd action=drop chain=forward comment="drop all from WAN not DSTNATed" connection-nat-state=!dstnat in-interface-list=WAN How can I get a basic script of these default out-of-the-box rules so I can add them through the terminal. ![]() Why did my router not have any rules? My question is how can I get the basic rules added to my firewall. Well I assumed that the default firewall is on but there is absolutely no rules on the list so from the best of my knowledge it might as well be off. ![]() Probably too much info but basically everywhere I read it says that these routers are meant to work out of the box and are ready to go. I also have it running a DHCP server for my one network and I have a Mikrotik switch connected to it. (I didn't use the quickset page but maybe I should've?) The initial config page never mentioned adding any firewall rules. I initially set up my router with help of the initial setup page on the Mikrotik documentation page. ![]() ![]() I am using a ccr1009 (it was a steal) for a home environment and I just realized after all this time that my firewall rule list is absolutely BLANK. Guys I hate to be a pain but I have a question that I need answered and after searching the web it's an absolute mystery to me. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |