How to avoid using print command before move in /ip firewall… ?
After added new rule to firewall, I want to move drop rule to bottom.
Give the drop rule a distinctive comment like ‘drop’ and then use a command like
/ip firewall rule forward add place-before=[find comment=drop]
when you are adding new rules.
BTW, it’s easier to change the default policy of the chain to ‘drop’ then use a special rule for that:
/ip firewall set forward policy=drop
a little mistahe in Eugene’s example. The correct one looks like below:
/ip firewall rule forward { add place-before=[find comment=drop]}
Edgars