Community discussions

MikroTik App
  4. RouterOS
  5. Wireless Networking

Block a IP on Mikrotik ???

Locked
 
User avatar
ViREnG
Member Candidate
Member Candidate
Topic Author
Posts: 229
Joined: Tue Aug 11, 2009 4:01 pm
Location: Boryspil

Block a IP on Mikrotik ???

Thu Aug 13, 2009 12:08 pm

hi All
My Problem is :
a People Have a Dictionary BruteForce and Attack to RouterBoard :
Image
By this Actions , Ping of My Customers Change From 1 to 20~50

How to Block this IP or Block All IP's From Other my Network ?

*My Customers Connect to My Network with HotSpot and Login
tnx
Top
 
kirshteins
MikroTik Support
MikroTik Support
Posts: 592
Joined: Tue Dec 02, 2008 10:55 am

Re: Block a IP on Mikrotik ???

Thu Aug 13, 2009 12:18 pm

I use rules like
Code: Select all
/ip firewall filter
add action=drop chain=input comment="drop ftp brute forcers" disabled=no dst-port=\
    21 protocol=tcp src-address-list=ftp_blacklist
add action=add-dst-to-address-list address-list=ftp_blacklist address-list-timeout=\
    0s chain=output comment="" content="530 Login incorrect" disabled=no \
    dst-address-list=ftp_stage3 protocol=tcp
add action=add-dst-to-address-list address-list=ftp_stage3 address-list-timeout=1m \
    chain=output comment="" content="530 Login incorrect" disabled=no \
    dst-address-list=ftp_stage2 protocol=tcp
add action=add-dst-to-address-list address-list=ftp_stage2 address-list-timeout=1m \
    chain=output comment="" content="530 Login incorrect" disabled=no \
    dst-address-list=ftp_stage1 protocol=tcp
add action=add-dst-to-address-list address-list=ftp_stage1 address-list-timeout=1m \
    chain=output comment="" content="530 Login incorrect" disabled=no protocol=tcp
To prevent FTP brute forces. Three incorrect FTP logins from single IP address within a minute and IP address is added to a blacklist.
Last edited by kirshteins on Thu Aug 13, 2009 12:21 pm, edited 1 time in total.
Top
 
User avatar
ViREnG
Member Candidate
Member Candidate
Topic Author
Posts: 229
Joined: Tue Aug 11, 2009 4:01 pm
Location: Boryspil

Re: Block a IP on Mikrotik ???

Thu Aug 13, 2009 12:19 pm

where in Win Box :(
Top
 
kirshteins
MikroTik Support
MikroTik Support
Posts: 592
Joined: Tue Dec 02, 2008 10:55 am

Re: Block a IP on Mikrotik ???

Thu Aug 13, 2009 12:23 pm

Open New Terminal in Winbox and paste it in.
Top
 
User avatar
ViREnG
Member Candidate
Member Candidate
Topic Author
Posts: 229
Joined: Tue Aug 11, 2009 4:01 pm
Location: Boryspil

Re: Block a IP on Mikrotik ???

Thu Aug 13, 2009 12:30 pm

Thanks
Top
 
remuss
newbie
Posts: 43
Joined: Sat May 05, 2007 11:35 am
Location: Romania, Timisoara
Contact:
Contact remuss

Re: Block a IP on Mikrotik ???

Thu Aug 20, 2009 12:47 pm

or u can disable ftp and other services that u don't need, and enable them only wen it's needed

Best regards Remus
Top
 
prof
just joined
Posts: 5
Joined: Fri Jan 04, 2008 7:30 pm

Re: Block a IP on Mikrotik ???

Thu Oct 01, 2009 2:50 pm

ohh i do see sometin like that in my side too but not often, well i will look to setting such up very soon
Top
Locked

Who is online

Users browsing this forum: No registered users and 83 guests
  4. RouterOS
  5. Wireless Networking