hi,i have an rb750up running on 6.38.7 bugfix os.Now i configured my router to block all p2p,tunneling e.t.c i run a small network in my neighbourhood so i had to do that to stop people hogging the internet.now i want to exempt a port im using in the mikrotik from all the rules,may someone kindly assist.thanks
ROS Firewall filter (iptables based) works on a first match basis; so all you need is to add a firewall rule with action=accept for such ethernet before your blocking rules.
i think there is something i am not getting..it will be kind enough if you walked me through..im trying to exempt port 10.50.50.0/24 from all my firewalls rules..see attached pdf [attachment=0]rules.pdf[/attachment]
rules.pdf (149 KB)
add these rules, they’ll be added as the first ones:
/ip firewall filter
add action=accept chain=input src-address=10.50.50.0/24 place-before=0
add action=accept chain=forward src-address=10.50.50.0/24 place-before=0
This instructs the firewall to leave them alone, they match the first rule, so no further rules will be applied for 10.50.50.0/24 on input and forward chains.
do i put any rules in nat ?thanks.i thought by putting before 0 i would be messing the ethernet getway rules.