Community discussions

MikroTik App
 
bam3nter
just joined
Topic Author
Posts: 8
Joined: Mon Feb 19, 2018 3:54 pm

BLock ip When login error

Sat Jun 22, 2019 7:30 am

Hello everybody
I want when someone can not enter my router And Show log login failure
src address add To address list
 
User avatar
danunjaya123
Frequent Visitor
Frequent Visitor
Posts: 93
Joined: Thu Oct 03, 2019 7:36 am
Location: India

Re: BLock ip When login error

Fri Nov 15, 2019 12:58 pm

You want to block your client address or any attackers ip address ?
 
bam3nter
just joined
Topic Author
Posts: 8
Joined: Mon Feb 19, 2018 3:54 pm

Re: BLock ip When login error

Sat Nov 16, 2019 9:53 am

You want to block your client address or any attackers ip address ?
yes Exactly
but by with winbox port
i change port winbox is not work The attack continued
 
dmitris
Frequent Visitor
Frequent Visitor
Posts: 93
Joined: Mon Oct 09, 2017 1:08 pm

Re: BLock ip When login error  [SOLVED]

Sat Nov 16, 2019 10:57 am

I'm using this one, helps a lot. Look at ssh example.
https://wiki.mikrotik.com/wiki/Brutefor ... prevention
Image
 
User avatar
jvanhambelgium
Member
Member
Posts: 351
Joined: Thu Jul 14, 2016 9:29 pm
Location: Belgium

Re: BLock ip When login error

Sat Nov 16, 2019 11:26 am

But why would you open up your routers' management interfaces (Webfig/Winbox/SSH) in the first place to the whole world ?
No way to "narrow down" SOURCE_IP that allowed to do management ? (eg. centralised jumphost or something)

Personally for some DNAT-services I use a complex "port-knocking" sequence so my Mikrotik is "opened up" for my specific IP at that time only after the sequence.
knowing there are 64K possible TCP-ports, 64K possible UDP-ports and having only a "time window" of 5 seconds the chances of somebody "guessing" my correct sequence is considered "0" to me.

Who is online

Users browsing this forum: Bing [Bot], Google [Bot] and 137 guests