User Tools

Site Tools


mikrotik_firewall_bruteforce_protection

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revision Previous revision
Last revision Both sides next revision
mikrotik_firewall_bruteforce_protection [2019/08/26 05:34]
admin
mikrotik_firewall_bruteforce_protection [2019/12/24 10:43]
admin
Line 2: Line 2:
 /ip firewall filter /ip firewall filter
 add action=jump chain=input comment="catch new UDP connections" connection-state=new dst-port=500,4500,1701,53 in-interface-list=WAN jump-target=anti-bruteforce protocol=udp src-address-list=!hosts.allow add action=jump chain=input comment="catch new UDP connections" connection-state=new dst-port=500,4500,1701,53 in-interface-list=WAN jump-target=anti-bruteforce protocol=udp src-address-list=!hosts.allow
-add action=jump chain=input comment="catch new TCP connections" connection-state=new dst-port=1723,22,3389,8291,53 in-interface-list=WAN jump-target=anti-bruteforce protocol=tcp src-address-list=!hosts.allow +add action=jump chain=input comment="catch new TCP connections" connection-state=new dst-port=1723,22,8291,53 in-interface-list=WAN jump-target=anti-bruteforce protocol=tcp src-address-list=!hosts.allow 
-add action=jump chain=forward comment="catch new UDP connections" connection-state=new dst-port=500,4500,1701,53 in-interface-list=WAN jump-target=anti-bruteforce protocol=udp src-address-list=!hosts.allow +add action=jump chain=forward comment="catch new UDP connections" connection-state=new dst-port=500,4500,1701 in-interface-list=WAN jump-target=anti-bruteforce protocol=udp src-address-list=!hosts.allow 
-add action=jump chain=forward comment="catch new TCP connections" connection-state=new dst-port=1723,22,3389,8291,53 in-interface-list=WAN jump-target=anti-bruteforce protocol=tcp src-address-list=!hosts.allow+add action=jump chain=forward comment="catch new TCP connections" connection-state=new dst-port=22,3389 in-interface-list=WAN jump-target=anti-bruteforce protocol=tcp src-address-list=!hosts.allow
 add action=return chain=anti-bruteforce comment="return (allow) some catched connections back to main firewall flow" dst-limit=6/1m,6,src-address/2m add action=return chain=anti-bruteforce comment="return (allow) some catched connections back to main firewall flow" dst-limit=6/1m,6,src-address/2m
 add action=add-src-to-address-list address-list=block-bruteforce address-list-timeout=1w chain=anti-bruteforce comment="add bruteforce IP to block-list" add action=add-src-to-address-list address-list=block-bruteforce address-list-timeout=1w chain=anti-bruteforce comment="add bruteforce IP to block-list"
mikrotik_firewall_bruteforce_protection.txt · Last modified: 2020/04/29 18:55 by admin