i have 2 mikrotik routers 1 at home and other at office.
my home router is set for firewall NAT masquerading and have applied 2 rules for securing the router.
1st firewall rule is to allow LAN on input chain on all interfaces . second one is to block
2nd rule is to block all other trafic to reach router. which is drop all traffic on all interfaces on input chain.
the above setup is working find.
however in my office. i have one 2011xx series router which i am using in this way.
- enabled web-proxy.
- NAT masqurading rule for ICMP
- NAT masqurading rule for https
- NAT masqurading rules for emails out/in.
now in here i also did the same as above. i applied both rules.
but on second rule which is (block all , input chain , action drop) it also block all my internet. and masqurading rules related to ICMP, HTTPS and Mailing.
Can any one help . why i can not apply drop all rule, after allowing LAN.
Thanks,
yousuf