I have several rules such as this in my CCR2116 device (running v7.4.1)
/ip firewall raw
add action=drop chain=prerouting protocol=tcp dst-port=80,443 in-interface-list=BR_ALL comment="Bad domain" content=abvrnnyf.com
add action=drop chain=prerouting comment="Inbound blocks" in-interface-list=BR_ALL log-prefix="Blocked In" src-address-list=BlockedSrcList
add action=drop chain=prerouting comment="Outbound blocks" dst-address-list=BlockedDstList in-interface-list=BR_ALL log-prefix="Blocked Out"
I would like to use an action that does not drop but does match and allow the match counters to still increment. Just to observe how the rules will behave.
action=passthrough does that but the packet then continues to be processed by later rules, unlike a Drop where there is no more processing.
I dont see a built in action for something like "no-action".
Any ideas?
was thinking about using something like this
action=jump jump-target=ObserveOnly
and there are not rules for the ObserveOnly chain.