Address Lists

hci · August 6, 2005, 5:19pm

Looking at address lists in Winbox. I would like to create an address list with several subnets.

IP / Firewall
Address Lists

I would like to start by adding these to an address list.

10.0.0.0/16
172.0.20.0/24
192.168.2.0/24

How do I do that in Winbox or telnet?

Matt

wildbill442 · August 6, 2005, 5:29pm

open up winbox click IP > Addresses

click the little plus sign then add your IP address information.. You can’t add a network address to an interface, (ie: 192.168.0.0/24 is not a valid host IP address)

hci · August 6, 2005, 5:37pm

Did that. All I see there is the list of IP’s assigned to the router. I want to edit the addresses assigned to address list I created and add some additional addresses. Address in an address list are NOT assigned to the router they are simply used in firewall rules.

Matt

wildbill442 · August 6, 2005, 5:51pm

Are you talking about an access list? Cause you keep saying ADDRESS LIST…

these are two different things…

If you’re trying to only allow certain subnets to manage your router, then click on IP > firewall, select FILTER RULES, select the INPUT chain. Then create a firewall rule that allows traffic from your respective networks…

example:

add chain=input src-address=10.0.0.0/24 dst-address=127.0.0.1/32 action=accept comment=“Allow connections from 10.0.0.0/24”
disabled=no

changeip · August 6, 2005, 5:57pm

I dont think you can use a subnet mask on the addresses within the address list.

Sam

hci · August 6, 2005, 5:59pm

http://www.mikrotik.com/docs/ros/2.9/ip/address_list

What I am having trouble with is creating a list with several addresses in it such as:

10.0.0.0/16
172.0.20.0/24
192.168.2.0/24

Matt

wildbill442 · August 6, 2005, 6:04pm

OK so just create a new list, and make sure all the IP addresses/subnets you assign to that list have the same list name..

I just tested it and it seemed to work fine for me.

hci · August 6, 2005, 6:12pm

I think thats the answer! Thanks!

Matt