Tue Aug 28, 2018 12:17 am
Clients are showing they have two IP addresses instead of one on whatsmyip.net, one real IP and the other IP's are fake here is three IPs that showed up 66.249.81.232, 66.249.81.228, 66.249.81.234.
They are not using VPN;s or proxies. I changed the IP of the main router for now and added firewall rules to block vpn's for clients.
/ip firewall filter
add action=drop chain=forward comment=PPTP dst-port=1723 protocol=tcp
add action=drop chain=forward comment="Default OpenVPN UDP port" dst-port=1194 protocol=udp
add action=drop chain=forward comment="Default OpenVPN TCP port" dst-port=1194 protocol=tcp
add action=drop chain=forward comment="Default OpenVPN UDP port" dst-port=443 protocol=udp
add action=drop chain=forward comment="Default OpenVPN TCP port" disabled=yes dst-port=443 protocol=tcp
add action=drop chain=forward comment="Default OpenVPN TCP port" dst-port=1290 protocol=tcp
add action=drop chain=forward comment="IPSec ESP" protocol=ipsec-esp
add action=drop chain=forward comment="IPSec AH" protocol=ipsec-ah
add action=drop chain=forward comment=L2TP dst-port=1701 protocol=udp
add action=drop chain=forward comment="IKE Connection" dst-port=500 protocol=udp
add action=drop chain=forward comment="NAT Traversal" dst-port=4500 protocol=udp
add action=drop chain=forward comment="Proxy Traffic" protocol=ipencap
add action=drop chain=forward comment="Tunneling Protocol and Traffic" protocol=gre
/ip firewall filter
add action=drop chain=forward comment="Block VPN Ports (PPTP,L2TP,IPSec) " disabled=yes dst-port=1701,1723,47,4500,500 protocol=udp
add action=drop chain=forward comment="Block VPN Ports (PPTP,L2TP,IPSec) " disabled=yes dst-port=1701,1723,47,4500,500 protocol=tcp