I experienced a problem with firewall-filter rules and ros-v3beta9.
when this rule is added nothing happens:
this rule should drop all p2p-connections >10 but byte and packet counter is already zero. there are many connections classified as p2p (more than 10 per ip) but nothing happens.
Code: Select all
/ip firewall filter add chain=forward protocol=tcp p2p=all-p2p tcp-flags=syn connection-limit=11,32 action=drop
connection tracking is enabled, I even tried changing the chain to output and input with the same result.
Is this a bug in beta9?