I frequently would like to see packets that are applied to specific firewall rule, mostly a “Deny” rule. Is there any way to accomplish this?
/ip firewall filter print stats interval=1s where chain=forward action=drop …other match conditions of the rule if needed…
Sindy, thanks for your reply.
Yes, one can easily see the count of packets with that command and also in Winbox.
I’m looking for a way to “torch” - see what src and dest IP address, port and protocols are being matched to the rule.
You can enable logging for any rule (log=yes, Log checkbox on Action tab in WinBox).
OMG, Awesome!!!
Thanks!