thanks, this is planned in a future upgrade of Winbox loader. Currently, I can suggest you to use the Dude for managing large networks of RouterOS devices: http://www.mikrotik.com/thedude.php Some more handy-to-network-admins features (actually tools): Ability 1. to run a whois on a given IP 2. to ...
thanks, this is planned in a future upgrade of Winbox loader. Currently, I can suggest you to use the Dude for managing large networks of RouterOS devices: http://www.mikrotik.com/thedude.php
As we use RouterOS a lot in our company (ABCom Albania), to offer our clients the best of our services, and while we have a lot of Mikrotik routers around, and all the hosts are saved in the host list of Winbox, it would be a great feature to be able to search through all the IP/MAC addresses for a ...
Why making rules for every single port (in this case ssh), when same rules can be applied to different ports ? /ip fi ma add action=mark-connection chain=prerouting disabled=no dst-port=20-23,110,143,113,69,156,5901,375-425,5631-5632 new-connection-mark=directcon passthrough=no protocol=tcp src-port...
How about limiting the SYN/ACK/PSH/FIN flags per seconds/per dst (attacker)/per tcp 20-23 (this case)? Usually automated brute force scripts send a SYN packet every 5 seconds. After that the victim would send back 4 packets to the attacker, ending with a ACK/FIN flag. If we can control those 4 packe...