hi,
i get allot of PPTP attemps on my WAN interface. is there anyway to add ip to ban list for 12 hrs
my log is:
TCP connections established from x.x.x.x
: waiting for call…
: terminating… -disconnected
: disconnected
TCP connections established from x.x.x.x
: waiting for call…
: terminating… -cntrl message too big
: disconnected
TCP connections established from x.x.x.x
: waiting for call…
: terminating… -could not connect - timed out
: disconnected
I am also interested to know … 
Try this ones:
/ip firewall address-list
add list=allowed VPN Connection address=yours IP
/ip firewall filter
add chain=input action=accept src-address-list=allowed VPN Connection in-interface=wlan1 dst-port=1723
add chain=input action=drop protocol=tcp src-address-list=VPN Connection in-interface=wlan1 dst-port=1723
add chain=input action=add-src-to-address-list protocol=tcp address-list=VPN Connection address-list-timeout=12h in-interface=wlan1 dst-port=1723
Hi Robo,
well in this script i need to have allowed ip inside list right?
This is yours external IP from which you connect to router, because all other IPs will be banned for 12h. Better solution would be change pptp port to 1724.
isnt possible to create a ban list, when the same ip has made to 5 login attemps.
creating an allowed ip list, is a problem for me. because i offen use different connections, like mobil broadband. and i have no static ip on this.