Community discussions

 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

How can i block these connections?? (see included image)

Tue Aug 30, 2011 3:12 am

i have a 100% bridged network.
i want to block the connections shown in the torch screen capture.

those connections have two things in common.
1: dst.address belong to a 172.16.0.0/21 network
2: RxRate is always 0bps

how can i block those connections?
any suggestions?


sorry for my poor english.

Image
 
fewi
Forum Guru
Forum Guru
Posts: 7734
Joined: Tue Aug 11, 2009 3:19 am

Re: How can i block these connections?? (see included image)

Tue Aug 30, 2011 3:50 am

Are those legitimate destination IPs, and can you drop just by IP?
Specific answers require specific questions. When in doubt, post the output of "/ip address print detail", "/ip route print detail", "/interface print detail", "/ip firewall export", and an accurate network diagram.
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Re: How can i block these connections?? (see included image)

Tue Aug 30, 2011 4:14 am

Thosr are the ip of my clients. Connections must meet both conditions to be dropped
 
fewi
Forum Guru
Forum Guru
Posts: 7734
Joined: Tue Aug 11, 2009 3:19 am

Re: How can i block these connections?? (see included image)

Tue Aug 30, 2011 5:23 am

How are they making it to your client? The source IP is a public address, so it's initiated by that side. Since the destination IP address is a private IP, you're specifically NATing that connection through.
Specific answers require specific questions. When in doubt, post the output of "/ip address print detail", "/ip route print detail", "/interface print detail", "/ip firewall export", and an accurate network diagram.
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Re: How can i block these connections?? (see included image)

Tue Aug 30, 2011 5:51 am

I'm natting. DstIP is the private ip of the client and SrcIP is the ip of the website or whatever he is visiting. In this example i'm torching a bridge interface. If i torch another interface source ip could become destiny ip and dst ip become src ip. I nat in another routerboard.
I don't know if i'm clear enough.
I want to drop connections with 0bps data transfer in one way and from (or to) certain network addresses (in this case 172.16.0.0/21)
 
fewi
Forum Guru
Forum Guru
Posts: 7734
Joined: Tue Aug 11, 2009 3:19 am

Re: How can i block these connections?? (see included image)

Tue Aug 30, 2011 6:37 am

Yes. You cannot do that. The firewall ruleset doesn't support the concept of a one way rate on a connection. So I'm trying to figure out alternative ways to accomplish that. I am out of ideas though. Good luck.
Specific answers require specific questions. When in doubt, post the output of "/ip address print detail", "/ip route print detail", "/interface print detail", "/ip firewall export", and an accurate network diagram.
 
User avatar
Chupaka
Forum Guru
Forum Guru
Posts: 8319
Joined: Mon Jun 19, 2006 11:15 pm
Location: Minsk, Belarus
Contact:

Re: How can i block these connections?? (see included image)

Sun Sep 04, 2011 1:15 am

Image

actually, those are packets from your users to the Internet addresses, without an answer. if you select your LAN interface instead of P2P, src and dst addresses will be swapped, and Tx Rate will be zero
Russian-speaking forum: https://forum.mikrotik.by/. Welcome!

For every complex problem, there is a solution that is simple, neat, and wrong.

MikroTik. Your life. Your routing.
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Re: How can i block these connections?? (see included image)

Sun Sep 04, 2011 1:36 am

What i want to do is to eliminate innecesary traffic in my 100% bridged network. I see traffic (via torch) from clients that are in the other point of my network and those packets shouldn't be there.
That is why one way is X bps and the other 0 bps. 0 bps because no client with that ip is in that part of the network. So i want to block those connections to avoid innecesary traffic. I have about 1200 clients and there are lot of that kind of traffic. I DON'T WANT TO ROUTE. I want to find out a painless solution.
 
User avatar
maximan
Trainer
Trainer
Posts: 549
Joined: Sat May 29, 2004 12:10 am
Location: Rio Cuarto, Argentina
Contact:

Re: How can i block these connections?? (see included image)

Mon Sep 05, 2011 8:59 pm

Are you balancing?

M.
MKE Solutions > Professional Support IT (Spanish / English)
FastNetMon / FNM Manager: DDoS Detection Tools.
 
User avatar
kolorasta
Member Candidate
Member Candidate
Topic Author
Posts: 299
Joined: Sun Jun 25, 2006 11:55 pm
Location: Argentina

Re: How can i block these connections?? (see included image)

Mon Sep 05, 2011 9:02 pm

Are you balancing?

M.
PCC

why u ask that?

Who is online

Users browsing this forum: MSN [Bot] and 112 guests