Hi, many company have router mikrotik for VPN to acces at home to company`s server. I want to configure to access only rdp, not on sharing (\fileserver) or any access of network.
How to configure to limit access?
Thank you.
You should go with the ip-firewall configuration under /ip firewall filter. Best way is to block everything and allow only protocols and ports you want to be accessed. That means you can filter everything except clients source-address to your RDP servers destination address and port (as well as the return path - but this can be done with accepting established/related connections)
Take a look at the wiki to see how to get started:
Ok,
I added
add action=drop chain=forward disabled=no dst-address=192.168.88.0/24 in-interface=all-ppp src-address=192.168.0.0/24
And I configured to allow RDP and its not work. Whats wrong?
L.E.:
I added
add chain=forward action=accept protocol=tcp dst-port 3389 in-interface=VPN comment="Allow RDP via VPN"
and it`s works!
Sorry and thanks.