I have read other post but they suggest using some apps to find rouge dhcp server…
but this is not what i want… i want some firewall rules only allow dhcp leases from my dhcp server.
Las weekend i had lot of problems because accidentally a client plug internet connection in the lan port of his router instead of plugging it in the wan port… ahhhhhhhh lot of headache
Same problem here. You should be able to filter DHCP requests through the firewall but what about the clients that aren’t connecting through a firewall i.e. on the same AP?
I do not do a lot of wireless AP’s with mikrotik, but I have read that you can uncheck the ‘default forward’ option to stop clients from passing traffic to each other on the same AP. This may help you. Otherwise I think you would have to add a /bridge filter rule to match and drop what you want.
-Louis
That happened to me last year. I tracked it down by foot and smashed it into a thousand pieces.
Very satisfying.
i think that Lerni is right… you have to disable “default forward” in the ap (and in every client in the access list, if you have any) and then use firewall rules in the AP… WHAT RULES??? that’s what i wanna know
Here is a link to a message which has enough information to create your required rules:
http://forum.mikrotik.com/t/blocking-roug-dhcp-server/15693/1
suppose that 192.168.2.1 is my dhcp server.
i want to block rogue dhcp servers in my network
putting this rule in ip/firewall/filter in every MT device in my network will block leases from rogue dhcp servers???
chain=forward action=drop dst-address=!192.168.2.1 dst-port=67 protocol=tcp