Block port 8888 TCP and UDP inbound into the router and also block 8888 on TCP and UDP to clients on the LAN side of the router.
Please help me for that
Thanks in advance.
Hello, this is very easy to do:
Go to Firewall -» Filter
Add a new rule,
to block this port into the router you must use the input chain
to block this port in your LAN you must use the forward chain
In the Protocol label, select TCP or UDP
In Dst.port type 8888
Then in the Action tab, and then select drop
You have to make 4 rules in total.
Use the following example. It blocks by default. Change bridge-LAN and ether-WAN to match your interface names, naturally.
/ip firewall filter
add chain=input action=accept connection-state=established,related comment="Accept established related"
add chain=input action=accept in-interface=bridge-LAN comment="Allow LAN access to router and Internet"
add chain=input action=drop comment="Drop all other input"
add chain=forward action=accept connection-state=established,related comment="Accept established related"
add chain=forward action=accept connection-state=new in-interface=bridge-LAN comment="Allow LAN access to router and Internet"
add chain=forward action=accept connection-nat-state=dstnat comment="Allow Port forwards"
add chain=forward action=drop comment="Drop all other forward"
# Example port forward
/ip firewall nat
add chain=srcnat action=masquerade out-interface=ether-WAN comment="Default masq"
add chain=dstnat action=dst-nat in-interface=ether-WAN protocol=tcp to-addresses=1.2.3.4 dst-port=123 to-ports=123 comment="Sample Port Forward"