Hi guys,
I have MikroTik Cloud Router Switch running v6.12. I have the following problem:
The network has static public IP, example 1.2.3.4.
Whenever I or anyone access 1.2.3.4 via public, they get the MikroTik interface to login:
Image 144.png
I would like to disable this. So when someone visits the public IP, they are unable to see the login screen or login at all.
Can someone help me with this?
Tnx!
You have several options:
If I disable the Service → www, would I still be able to access the router locally via web interface?
mikrot1ker post your firewall rules here (input only) Check your IP here http://www.yougetsignal.com/tools/open-ports/
Here is my Input rules )
0 ;;; IPT: allow related,established
chain=input action=accept connection-state=established,related log=no
log-prefix=""
1 ;;; IPT: allow all from lan
chain=input action=accept in-interface=!ether1-gateway log=no
log-prefix=""
2 ;;; IPT: log with limit
chain=input action=log limit=1/1m,5 log=no log-prefix="IPT:"
3 ;;; IPT: drop all other
chain=input action=drop log=no log-prefix=""
No, you won’t; you’ll have to use winbox for management, which BTW is a much better option (layer2 support, RoMON, multiple windows, session saving, etc).
If you want to keep using webfig, use either the second of third option.
I second what sash7 said, if you were using the default firewall ruleset, your webfig won’t be available from WAN, you have to check that.
To post the ruleset, open a New terminal and issue
/ip firewall export
then paste the text here, edit out public IP for privacy if desired.