Hi everyone!
I’m newbie in MikrotikOS and I have a problem with DNS on Mikrotik.
RB2011UiAS v 6.33.5 - IP: 192.168.88.1
When I set on client MT DNS 192.168.88.1 I have no acces to Web. Anyway I was created a last rule to block everything else on input:
add chain=input action=drop comment="Drop everything else"
I have acces when I disabled it.
Please tell me what to do. Remote requests in IP/Settings are allowed. Port 53 tcp and udp are open on input chain. I know it’s dangerous but I’m trying everything.
Do you have your Mikrotik setup to get DNS from your ISP/public DNS Service?
If your Mikrotik can reach out to another source for DNS queries then you can assign your Mikrotik to act as a DNS service. If you do not, then your devices will not be able to get DNS query responses or they will have to have specific DNS entries on each host.
Modify your drop-everything rule by adding the criteria in-interface=ether1 (or whatever interface has your public IP address on it, e.g. pppoe1 if you’re using pppoe)
This will make the rule drop every new connection that arrives from the Internet, but won’t block anything on any other interface, such as the LAN.