Dear All
is mikrotik has a capability to auto block mac address for each user try to enter wrong coordinate (username & password) 3 times wrong so the mikrotik will block hes mac address or ip address?
if yes how to do that? is there any script
with best regards
The Easiest Solution is to only Allow a connection to the Router via a isolated Management-Network and/or Physical-Port.
If this isn’t possible, you will need to jerry-rig something together…
The Mikrotik-Wiki show an exemple for SSH (https://wiki.mikrotik.com/wiki/Bruteforce_login_prevention)
Unfortunatly this one only counts rapid succession of reconnects, not specificly login failures
But it works reasonably well!
alternatively,
Some use Syslog to analyse and if failed logins are detected, add the Src-Address via API.
Where?
Hotspot
VPN
Access to router, SSH/Telnet/Winbox/Web?
PPPoE
++
thanks ConnyMercier
For hotspot
thank you Jotne