Community discussions

MikroTik App
 
mikruser
Long time Member
Long time Member
Topic Author
Posts: 578
Joined: Wed Jan 16, 2013 6:28 pm

Upgrading to latest ROS "destroy" some firewall rules

Thu Oct 06, 2016 12:43 pm

Hello,

All my configs have 4 rules:
accept for Connection State = established
accept for Connection State = related
(for input and forward chains respectively)

after upgrade to latest ROS (for example 6.33.1 -> 6.37.1), I discovered that these rules now without any "Connection State" value!
now its simply "accept all input" and "accept all forward"!
this is a serious security breach!
 
thomsen
newbie
Posts: 27
Joined: Wed Sep 28, 2016 10:50 am

Re: Upgrading to latest ROS "destroy" some firewall rules

Fri Oct 28, 2016 10:48 am

Hello,

All my configs have 4 rules:
accept for Connection State = established
accept for Connection State = related
(for input and forward chains respectively)

after upgrade to latest ROS (for example 6.33.1 -> 6.37.1), I discovered that these rules now without any "Connection State" value!
now its simply "accept all input" and "accept all forward"!
this is a serious security breach!
The same situation. After upgrade old ROS (6.34 and less) to 6.37.1 - related and established box's were unchecked.

Who is online

Users browsing this forum: meshnet, raphaps, rolljak, sindy, vingjfg, xrlls and 40 guests