Now I want to filter devices, only specific trusted devices with IP can use my network. I tried firewall in router, but it didn’t worked, as I understand devices won’t even reach router that could firewall do a job, everything is working locally on switch. I tried in switch to use firewall still didn’t work.
Does someone know how to filter devices by IP or MAC in switch ?
Hi friend!
It’s some strange when you using firewall in router for to drop ip address not working.
You can try this:
Crate a address list with your IP segment of confiance
Make a firewall rule but, it’s important define which chain use, because it’s the key for rule work correctly
Input: All traffic enter in your router (In a simple word the destiny is your router and not other)
Forward: All traffic cross your router and the destiny is other equip
Output: All traffic out in your router, for example when maked a ping from your router to another, this traffic it’s output
Define correctly interface where you traffic come
Depend of routerOS version, if you use v7 this option stay in “general” when maked a filter rule in another case with v6 stay in “Advance”, and define all traffic isn’t your address list (make a check box “!”)
When it’s true the rule must drop traffic
(Action → Drop)
But if the rule doesn’t work correctly, please share your filter rule to review.Using the next command:
/ip firewall filter print
In switch you can use bridge filter option, but honestly I don’t have many experience used that, maybe another guy have more experience using option.
I hope my commentaries can help you.
