Hello everybody! Would it be safe for me to only use Mikrotik as a firewall in the company I work for, having paid antivirus on all machines?
That is generally one of the purposes of an MT device.
Where will all the PCs get their IP addresses from??
A more complete firewall. They say that mikrotik has security holes, is this true?
Absolutely not. Where did you even hear that nonsense? Btw, what exaclty do you mean by a more ‘complete’ firewall ?
Sorry, that’s what I hear. I currently use Sophos Firewall and want to switch to Mikrotik. What do you think?
Vulnerabilities exist almost everywhere. At the moment, I am not aware of any vulnerabilities in Mikrotik products. But we must not forget about the human factor and the correct configuration of equipment. You can also look towards pfsense, for example
It all depends on what you are using Sophos for. Could you provide a brief description?
That’s very true my friend.
For preventing attacks, controlling internet access, redirects and VPN.
They say that mikrotik has security holes, is this true?
“they” say… who are they ? what exactly they “say” ? Is it supported by any facts, evidence, anything at all, or did they just say it ?
When they say something, it must be truth, right ?
All known vulnerabilities are world-wide tracked in Common Vulnerabilities and Exposures
https://cve.mitre.org/
feel free to find anything relevant to Mikrotik [ note : obviously you would be looking into current software, not something from 2022 ]
“they say”… I hate things like that. Politics, society, technology, they say. Sht fck.
You can easily use Mikrotik devices to perform what you request. The problem obviously is - based on your formulation, perception of reality etc - that you don’t have the knowledge and expertise to do that properly and I apology for these words. Don’t mean to be rude and harsh, it’s just reflection of reality. I’m not a pilot. I’m not a kardiologist. I’m not an accountant. I don’t have what it takes : skills, knowledge, education, experience etc. You are not a networking engineer, otherwise you wouldn’t need to ask those questions.
RoS doesn’t support advanced prevention of DoS/DDoS or similar attacks. You’d be better off sticking with Sophos or purchasing those services from Cloudflare.
As an edge router with the ability to filter https and other encrypted traffic, clearly not. For everything else, fantastic.
As noted by your second post, this thread is nothing more than trolling.
@Larsa: Advanced ddos??, that is the responsibility of ISPs ( and like minded groups of ISPs) and those in charge of the systems of the internet.
Concur!
According to whom? The only advanced protection against DOS/DDOS attacks that I know about is through additional services for businesses. Do you know of any consumer ISPs or other service provider that include this as part of their service?
Absolutely know that companies join conglomerates of like minded companies and ISPs to ward off attacks.
They try to isolate the source vectors and close off traffic to the closest point of source.
Very enterprisish stuff… not for the faint of wallet and thus I dont pay for it.
Some companies sign on to such conglomerates and thus can provide their customers the benefits of this type of protection.