HI,
I want to drop traffic on all unused ports on my firewall.
Forward rules:
- allow http, dns, icmp, igmp, netbios,… /allowing all needed trafic to pass/forward
- “jump to block” rule /jump to “block rule” if service/protocol/port is not specified in 1st rule
- block rule /droping unspecified traffic
- drop invalid /droping invalid connections
There are some other imput chain rules to allow winbox connection, icmp, dns… from router.
And now, a problem.
if I set http rule src-port 80, all traffic on port 80 is droped, but if I set any-port to 80, http traffic passes, and all works again.
I tried to look on wiki page for firewall / filter and didn’t find explanation for “any-port”.
So what does the “any-port” function do or what it means?