Block internet traffic from IP

mrmut · December 9, 2018, 9:59am

How would I proceed to block all traffic towards internet from a specific IP, bar several ports?

From what I understand, I should select forward chain, src address (local PC IP address) and set the rule to block?

I also have two TCP ports that I need to work, so I should set the allow rule to forward, port, protocol, (in interface) and destination address.

Am I good with this?

sebastia · December 9, 2018, 10:40am

sure, that will do it. Easiast to first allow what you want, and close with “reject all”. Reject will be communicated to user, so he won’t have to timeout.

something like

/ip firewall filter
add action=accept chain=forward protocol=tcp dst-ports=80,443, ... ? src-address=ip
add action=reject chain=forward src-address=ip

mrmut · December 9, 2018, 1:01pm

Thanks! Appreciated!