Hi,
I want to allow DNS remote requests from LAN and block them from the WAN interface for example a PPPoE interface.
How do I have to configure the firewall?
assuming ether1 to be your wan port
/ip firewall filter
add action=drop chain=input dst-port=53 in-interface=ether1 protocol=udp
don’t forget to give karma if this helped you
If you want to configure RouterOS as a firewall then you should generally be dropping all input/forward chain traffic that you haven’t explicitly allowed.