I want to configure this http://wiki.mikrotik.com/wiki/NetworkPro_on_firewalling
/ ip firewall filter
add chain=forward in-interface=Local out-interface=Local action=accept comment="Allow traffic between clients"
but i have 9 local interface. So, instead of creating rule for every Local interface what i can use?
Thanks
Asus
you can use address ranges instead of in and out interfaces.
You can use a script to automate creating the rules:
:foreach i in=[/interface find] do={
/ip firewall filter add chain=forward in-interface=[/interface get $i name] out-interface=[/interface get $i name] comment="Local interface forwarding"
}
there is a shortcut. Use src-address-type= and dst-address-type= LOCAL, and leave in-interface and out-interface blank.
but how router will identify local traffic?
src-address-type=local and dst-address-type=local is for traffic going to/from any IPs of the router itself not forwarding traffic between clients “through” the router.