ShieldsUp Stealth All ports

RouterOS Beginner Basics
1

I have been trying to stealth ports so they don’t show up and pass the ShieldsUp test, I have tried a few firewall rules but unable to get any successfil results,

I have managed to pass the ping echo with this script:

/ip firewall filter
add chain=input protocol=icmp icmp-options=0:0 action=drop \
comment="echo reply"
add chain=input protocol=icmp icmp-options=8:0 action=drop \
comment="allow echo request"
add chain=input protocol=icmp action=accept \
comment="Allow ICMP"

would appreciate some help stealthing all ports so that they show up green. thanks in advance.

2

Change the in-interface to match your bridge name.

/ip firewall filter
add action=accept chain=input connection-state=established,related comment="Accept established related"
add action=accept chain=input in-interface=bridge-LAN comment="Allow LAN access to router and Internet"
add action=drop chain=input comment="Drop all other input"
add action=accept chain=forward connection-state=established,related comment="Accept established related"
add action=accept chain=forward connection-state=new in-interface=bridge-LAN comment="Allow LAN access to router and Internet"
add action=accept chain=forward connection-nat-state=dstnat comment="Accept Port forwards"
add action=drop chain=forward comment="Drop all other forward"
3

Thanks alot :slight_smile: