Mikrotik Firewall for LAN devices

tiran · June 10, 2023, 12:53pm

I have mikrotik l2tp VPN with 12 branch locations. each branch have two ISP connections and the main ISP connection connected to RB450 and use WAPR for Backup connection. I have configured VRRP for both routers and failover and other things working properly. each branch have 2 to 5 computers.
Now I need advance option that means basic firewall for my Branches. I need to block internet for all branches without any desk, TeamViewer, Microsoft office 365, Microsoft Teams

How can I do that

anav · June 10, 2023, 2:19pm

Forward chain
Read about firewall rules etc. here.
https://forum.mikrotik.com/viewtopic.php?t=180838

optio · June 10, 2023, 2:31pm

Get familiar with firewall rules as anav wrote, investigate services connections (ips/ip ranges and ports) which you need to allow (as I wrote you my example how I did this for QoS http://forum.mikrotik.com/t/install-basic-opensource-firewall-as-docker-container-for-control-my-whole-lan/166504/1) and block other.