Firewall help for RB2011UiAS-2HnD-IN

RouterOS Beginner Basics
1

I just bought a RB2011UiAS-2HnD-IN and this is my first experience with ROUTEROS. Here is what I would like to do.

  1. BLOCK all Incoming and outgoing traffic at wan port currently ether1
  2. Start with opening up some basic ports (80,53,443…)
  3. I have a PC setup for torrents and would like to send all torrent traffic to it
  4. I have a HTTP, FTP server that I will need to open up ports

What i would like to accomplish is DROP EVERYTHING in and out of WAN (ether1) unless i specifically allow it.

I know this will take a while to recognize all ports but that should not be a problem.

I want the list nice and short and since this a home network should not be that difficult.

2
  1. All incomming connection on ether1 or WAN are rejected by default ! No need to disable nothing here.
  2. You need to port forward ports 80, 443 for SSL, and port 53. So how to do that, check this: http://forum.mikrotik.com/t/all-traffic-redirect-to-my-webserver-on-port-80/84075/1
  3. Port 80 will do that. Will redirect all traffic from your webserver to your mikrotik.
  4. For HTTP server port 80 is needed. Open that port. For FTP you will need to NAT port 21 also.

Tell if something you dont know how to do that. :slight_smile: