Community discussions

Search found 11 matches

by chemy
Mon Sep 09, 2019 2:10 am
Forum: General
Topic: Port Forwarding on ECMP Balancing
Replies: 10
Views: 1122

Re: Port Forwarding on ECMP Balancing

It Works!

Thanks so much!
by chemy
Sun Sep 08, 2019 7:40 pm
Forum: General
Topic: Port Forwarding on ECMP Balancing
Replies: 10
Views: 1122

Re: Port Forwarding on ECMP Balancing

Hi Sob, I made some testing and it looks like I'm my mangle rules for QoS are causing the problem. If a Deactivate them works fine. Here are all my mangle rules: add action=mark-connection chain=input in-interface=ether1-WAN new-connection-mark=WAN_conn passthrough=yes add action=mark-connection cha...
by chemy
Sat Sep 07, 2019 3:18 am
Forum: General
Topic: Port Forwarding on ECMP Balancing
Replies: 10
Views: 1122

Re: Port Forwarding on ECMP Balancing

Thanks for your help. But it seems that still doesn't work. Here are my current mangle rules: add action=mark-connection chain=prerouting in-interface=ether1-WAN new-connection-mark=WAN_conn passthrough=yes add action=mark-connection chain=prerouting in-interface=ether5-WAN2 new-connection-mark=WAN2...
by chemy
Sat Sep 07, 2019 2:30 am
Forum: General
Topic: Port Forwarding on ECMP Balancing
Replies: 10
Views: 1122

Re: Port Forwarding on ECMP Balancing

Thanks. So, my rules need to be like the following? BTW, I have a bridge on the LAN side add action=mark-connection chain=prerouting in-interface=ether1-WAN new-connection-mark=WAN_conn passthrough=yes add action=mark-connection chain=prerouting in-interface=ether5-WAN2 new-connection-mark=WAN2_conn...
by chemy
Sat Sep 07, 2019 1:51 am
Forum: General
Topic: Rejecting or Dropping [Help]
Replies: 24
Views: 2548

Re: Rejecting or Dropping [Help]

Do you want to restrict the access to the Mikrotik Web Administration? If so, you can create firewall rules for that purpose, without layer7 stuff.
by chemy
Sat Sep 07, 2019 1:32 am
Forum: General
Topic: Port Forwarding on ECMP Balancing
Replies: 10
Views: 1122

Re: Port Forwarding on ECMP Balancing

Mangle rules should be in pre-routing chain
Do you mean the mark-routing mangle rules? I just tried that and it didn't work. I also tried using prerouting on the 4 mangle rules with no success.
by chemy
Sat Sep 07, 2019 1:13 am
Forum: General
Topic: Port Forwarding on ECMP Balancing
Replies: 10
Views: 1122

Port Forwarding on ECMP Balancing

Hello Everyone! I'm working with 2 ISP one of 10Mbps and other of 100Mbps. The 10Mbps connection have a Public IP to access from outside to a web app. From inside my network the ECMP balancing works fine, but when I try to access from outside the connection can't be established. It seems that the co...
by chemy
Tue Jun 19, 2018 2:11 am
Forum: General
Topic: Mikrotik ports flapping
Replies: 3
Views: 737

Mikrotik ports flapping

Hello everyone, I have a Mikrotik that when copying large files does what is showed on the attachment. I updated RouterOS and firmware to 6.42.3 And on the same Mikrotik sometimes just the WAN port (Where I connected the ISP) does the same. Interface up and down several times. What can I do? Regards
by chemy
Fri May 04, 2018 11:42 pm
Forum: Beginner Basics
Topic: Preventing MySQL and MSSQL Bruteforce attacks
Replies: 7
Views: 1116

Re: Preventing MySQL and MSSQL Bruteforce attacks

Hi Sayrax,

The database is open to the world for remote access to a company management software. It's a Windows Server, fail2ban works with windows?
by chemy
Wed May 02, 2018 6:39 pm
Forum: Beginner Basics
Topic: Preventing MySQL and MSSQL Bruteforce attacks
Replies: 7
Views: 1116

Re: Preventing MySQL and MSSQL Bruteforce attacks

oohh I see. So there is not a way to prevent this with mikrotik automatically. Maybe I can use schedules and blacklists.

Thanks
by chemy
Mon Apr 30, 2018 11:50 pm
Forum: Beginner Basics
Topic: Preventing MySQL and MSSQL Bruteforce attacks
Replies: 7
Views: 1116

Preventing MySQL and MSSQL Bruteforce attacks

Hello Everyone, I am new working with Mikrotik and in this forum. I have a Mikrotik Administering the network as a firewall, QoS, NAT, DHCP, etc. and I need to prevent bruteforce attacks for MySQL and MSSQL servers. I tried something like this: /ip firewall filter add chain=forward protocol=tcp dst-...