hi all
good day
as we installed new mikrotik routerboard 1100, in our company to secure DHCP server accoring to MAC address, this is ok and no problem with that.
we need to limit our users internet access by firewall filter rules for two groups
1- access only several websites 5 or 7 websites
2- access only outlook ports
any help please because as we make the rules and it not working!!
Hint: use address lists…
Can you explain please?
http://wiki.mikrotik.com/wiki/Manual:IP/Firewall
http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Address_list
These group users according to IP address
We need to group users accoring to MAC address
fix ip addresses to mac using dhcp or arp static entries
then use that fixed ip in address lists
block website by web proxy or firewall filter rules???
with firewall rules or web proxy??
Or force all DNS queries to go to your DNS, then create static entries with wildcards so that those websites resolve to 127.0.0.1 or to a local page explaining its forbidden…
Hi
Sorry for keep asking but i dont have a big experience with mikrotik
I tried to block all websites by firewall rule according to user MAC address .. it worked
But
When try to allow one website for the same user and keep blocking all other website with the above rule .. failed
Even i put the allow rule first and the drop rule second !!
It is really recommended to block all websites and allow several websites by rules .. because if we will block evey website by a single rule that is impossible.
And please let me know if that is possible with the web proxy .. deny all websites and redirect the request to a specific Url and allow several websites only?
Your support with examples is highly recommended