My CIDR registrator send me some e-mails with a lot of IP Address from my CIDR, and with the message “The DNS Recursive is opened, please close it”.
how can I close recursive dns on mikrotik?
where can I verify if its opened?
thank you
If you need to use the routerboard as a DNS server for LAN clients use input filters in /IP Firewall to block access to the DNS server from the WAN port. Also consider a full security review of your settings because if external access to the DNS server is open it may not be the only problem.
Hi,
this RB isnt my DNS Server… I just want to block,.. i’ve tryied to do it,.. but doesnt work.. .look:
/ip firewall filter
add action=drop chain=input comment=“DESABILITA DNS RECURSIVO - UDP” disabled=no dst-port=53 in-interface=ether4 protocol=udp
add action=drop chain=input comment=“DESABILITA DNS RECURSIVO - TCP” disabled=no dst-port=53 in-interface=ether4 protocol=tcp
but where I can test if this dns is opened?
somebody knows how to block?
Dropping the traffic should work but it is better to arrange a firewall to permit certain traffic and drop everything. If you send me an email with the IPs I will scan them for you to check if they are now blocked.
look, this firewall rules:
/ip firewall filter
add action=drop chain=input comment=“DESABILITA DNS RECURSIVO - UDP” disabled=no dst-port=53 in-interface=ether4 protocol=udp
add action=drop chain=input comment=“DESABILITA DNS RECURSIVO - TCP” disabled=no dst-port=53 in-interface=ether4 protocol=tcp
i’m blocking everything on port 53, thats right?
how I can test? with nslookup? or dig?
somebody?