Page 1 of 1

Unknown messages when I conect my Mkt in Internet

Posted: Tue May 15, 2007 4:14 pm
by rgpmikrotik
Hello i´m configurating an mtk as a pppoe server for an ISP, it has 2 interfaces, 1 for the private net, an the other is conected to internet with a public IP address.

The problem is that when i conect the public interface to internet, a lot of messages appears that i don´t understand (from diferent users and IP addresses wich i don´t know)::


may/14/2007 16:21:22 system,error, critical login failture for user rupert from 61.152.162.183 via ssh


please if someone knows which is the solution tell me, thanks

Re: Unknown messages when I conect my Mkt in Internet

Posted: Tue May 15, 2007 4:25 pm
by balimore
---
keep stronge secure for your machine [router], other user trying login in....
please, keep secure as soon as possible.... :wink:

do on /ip service submenu to make basic secure first..

regards
Hasbullah.com
---

Posted: Tue May 15, 2007 4:33 pm
by rgpmikrotik
thank you i´ll try to do it.
That is the same of making a filtering in ip/firewall?

Posted: Tue May 15, 2007 4:41 pm
by balimore
thank you i´ll try to do it.
That is the same of making a filtering in ip/firewall?
---
yes..
later, when you have stable network than make filter everythink....

regards
Hasbullah.com
---

Posted: Tue May 15, 2007 4:57 pm
by rgpmikrotik
I had that configuration by default

name port available from
ftp 21 0.0.0.0/0
ssh 22 0.0.0.0/0
telnet 23 0.0.0.0/0
ssh 22 0.0.0.0/0
www 80 0.0.0.0/0

I disabled ssh, wich i had problems, if i had have problems with www for expample and i disable here www available for 0.0.0.0/0 my clients wont be able to use www in internet or not?

in ip/services when is enabled the router permit the access by dafault an if its disabled denny the service by default and i have to permit my clients to use www in ip/firewall filters ???

please tell me how i use ip/services, and which is the efect in putting a service as enabled or disabled

thanks

Posted: Tue May 15, 2007 5:10 pm
by balimore
---
Hai friend

that's only access to login in to your router,...
e.g: you have private subnet like this
ftp 21 address=192.168.1.0/24
ssh 22 address=192.168.1.0/24
only that subnet will able to login in and must corret ID, please disable when you no need it, and better you config first with mac-telnet tool.

you must have stronge secure when go public... :wink:

regards
Hasbullah.com
---

Posted: Tue May 15, 2007 5:17 pm
by rgpmikrotik
ok, i think i understood, it doesn´t do nothing with the forward traffic, thanks