need a rule, urgently

3245 · Thu Jan 22, 2015 10:57 am

Hello
Good day,

hetzner sent me below abuse:

Dear Sir or Madam

We have noticed that you have been using other IPs from the same subnet in addition to the main IP mentioned in the above subject line.

As this is not permitted, we regret to inform you that your server has been deactivated.

Guidelines regarding further course of action may be found in our wiki: http://wiki.hetzner.de/index.php/Leitfa ... perrung/en.

Yours faithfully

Your Hetzner Support Team

and i added below rules in my mirktok router:

/ip firewall filter add action=drop chain=forward connection-state=invalid in-interface=ether1

This rule will drop invalid connections if your router is NAT
/ip firewall filter add action=drop chain=input connection-state=invalid in-interface=ether1

but still hetzner tell me below:

Dear Client,

the Server is still spoofing IPs.

Mit freundlichen Grüßen / Best Regards

how i can resolve it?
there is rules for drop ip spoofing in mikrotik router?

Note: i use mikrotik version 5.29

There is a tut for resolve this in iptables linux (debian or centos) how to resolve it in mikrotik: http://blackbird.si/hetzners-ban-nat-le ... -new-year/

Thanks.

KennyDB · Thu Jan 22, 2015 2:29 pm

I'm not sure if it exactly helps you but you might want to look at the second post here:
http://forum.mikrotik.com/viewtopic.php?f=2&t=81738

rmmccann · Thu Jan 22, 2015 10:14 pm

Shot in the dark, but do you have proxy-arp enabled on the WAN-facing interface by chance?

need a rule, urgently

need a rule, urgently

Re: need a rule, urgently

Re: need a rule, urgently

Who is online