Hi,

I'm running a PPPoE Server on RouterOS 4.5
Is there a possibility to match any traffic that originates from a pppoe-client apart from their IP addresses?

Best regards

Max

/ip firewall filter add chain=forward in-interface=pppoe-whatever src-address=!Point-to-PointIPAddress

in-interface=pppoe-whatever

I don't really like the idea of creating over 80 rules

you want to match all pppoe client traffic in one rule ?

Considering each pppoe connection has a unique src-address, I doubt there's any other way than 1 rule per connection. You can use address lists, but then each pppoe-client will still be able to send traffic using another pppoe-client's src-address.

how about address rage, or subnet? what do you want to do with that rule?

what do you want to do with that rule?

Some basic spoofing prevention as well as filtering.
I would prefer "Prevent all pppoe-clients from accessing subnet 10.0.0.0/24" to "Prevent 80.x.x.x/24 from accessing subnet 10.0.0.0/24"