My CIDR registrator send me some e-mails with a lot of IP Address from my CIDR, and with the message "The DNS Recursive is opened, please close it".

how can I close recursive dns on mikrotik?

where can I verify if its opened?

thank you

If you need to use the routerboard as a DNS server for LAN clients use input filters in /IP Firewall to block access to the DNS server from the WAN port. Also consider a full security review of your settings because if external access to the DNS server is open it may not be the only problem.

Hi,

this RB isnt my DNS Server... I just want to block,.. i've tryied to do it,.. but doesnt work.. .look:

/ip firewall filter
add action=drop chain=input comment="DESABILITA DNS RECURSIVO - UDP" disabled=no dst-port=53 in-interface=ether4 protocol=udp
add action=drop chain=input comment="DESABILITA DNS RECURSIVO - TCP" disabled=no dst-port=53 in-interface=ether4 protocol=tcp


but where I can test if this dns is opened?

somebody knows how to block?

Dropping the traffic should work but it is better to arrange a firewall to permit certain traffic and drop *everything*. If you send me an email with the IPs I will scan them for you to check if they are now blocked.

look, this firewall rules:

/ip firewall filter
add action=drop chain=input comment="DESABILITA DNS RECURSIVO - UDP" disabled=no dst-port=53 in-interface=ether4 protocol=udp
add action=drop chain=input comment="DESABILITA DNS RECURSIVO - TCP" disabled=no dst-port=53 in-interface=ether4 protocol=tcp


i'm blocking everything on port 53, thats right?

how I can test? with nslookup? or dig?

somebody?

lmgtfy.com/?q=nslookup