Hi.
Is there any chance to add tcp/udp filtering? I would like to deny traffic to ports: 135-139 and 445 (windows viruses).
Thanks in advance.
OK, I know, but what this have to do with SwOS?
Have you tried the ACLs ?
http://wiki.mikrotik.com/wiki/SwOS#ACL_Tab
I think it should be doable with the ACLs, but hav not tried this myself 
Ronny
Sorry, was browsing active topics (not sorted by category) and spaced on the category.
Ok but how to block certain tcp/udp port?
Ok but how to block certain tcp/udp port?
It’s not possible.
Regards,
So I was right, its impossible.
Please add port number to block.
Use 0.0.0.0/0:low-high format in IP Src and IP Dst fields, to apply UDP or TCP port conditions.
Sorry but I dont understood, please explain.
How to block i.e. port 135?
EDIT
Ok, I put “:135” in destination field and it works.
EDIT
At screenshot is 23 port for testing.
@kirshteins
Great news that is possible to block specific ports.
Update Wiki documentation, please
@log
Thanks for testing this feature.
Regards,
I also please to update SwOS wiki.
@kirshteins - please confirm that my configuration is correct (its working but I dont want to mess in my network).
Yes, this rule will discard all TCP dst-port 23 traffic.
This feature is now documented in the Wiki http://wiki.mikrotik.com/wiki/SwOS. Sorry for the inconvenience it might caused.
OK so I set my configuration, will see how it works.
I found some issue.
In FW 1.4 after add fourth rule and refresh site, last rule is making as same as first.
In FW 1.5 everything is working fine so before set ACL rule I suggest upgrade FW.