Greetings!
I want to create some simple firewall for my servers.
i want this scenario:
ip address zzz.zzz.zzz.zzz has open port 80,443,110,35…etc, close all other ports.
I tried:
ip firewall filter add chain=forward dst-address=zzz.zzz.zzz.zzz protocol=tcp dst-port=80 action=accept
and so long for other ports…
Last firewall rule is:
ip firewall add chain=forward dst-address=zzz.zzz.zzz.zzz action=drop
But then i can’t send mails anymore, can’t ping websites from server… i opened all needed ports for that, but stil same, when i disable this last rule, everything is working.
I 'm sure i miss something, i tried same scenario on the linux iptables…same things happens…
Thanks again!