I installed a 750GL not long ago, and it works out of the box quite fine with NAT - however it is now that I have the time to actually get down and set it up properly. Later on I’d like to add VPN and stuff, but now I’m mainly interested whether I need to change anything from the factory defaults (apart from the admin password) to make my network safe.
Like denying ipv6 traffic, setting up safety rules in the fw, restricting outside admin access, etc… Is there a walkthrough for this? Or is the RB750GL safe out of the box?
Hi,
It may be useful http://wiki.mikrotik.com/wiki/Securing_New_RouterOs_Router
The default config is moderately safe if you enabled the firewall. For a next step I’d recommend a walk through the webfig or winbox menus to shut off or disable any packages or services that you don’t need. Not using ppp or hotspot or ipv6? Disable them. Also limit the address ranges or interfaces allowed access to various services.