Community discussions

MikroTik App
 
chipware
just joined
Topic Author
Posts: 12
Joined: Wed Jun 03, 2015 7:57 pm

Enable DNS only for router itself

Thu Dec 29, 2022 4:23 pm

Hi,

I would like to enable DNS only for the router itself to resolve the smtp server. If I enable input for port TCP/UDP 53 but drop all the rest the dns does not resolve the Ip Adress of the mail server and cannot send the email. Can you help me setting up the firewall rules?

Thanks in advance.
 
User avatar
Amm0
Forum Guru
Forum Guru
Posts: 3169
Joined: Sun May 01, 2016 7:12 pm
Location: California

Re: Enable DNS only for router itself

Thu Dec 29, 2022 4:32 pm

You should be able to just uncheck the "Allow Remote Request", that what starts it listening. No firewall rule required. Internally Mikrotik doesn't need port 53 to use DNS.
 
User avatar
rextended
Forum Guru
Forum Guru
Posts: 11967
Joined: Tue Feb 25, 2014 12:49 pm
Location: Italy
Contact:

Re: Enable DNS only for router itself

Thu Dec 29, 2022 5:57 pm

Hi,

I would like to enable DNS only for the router itself to resolve the smtp server. If I enable input for port TCP/UDP 53 but drop all the rest the dns does not resolve the Ip Adress of the mail server and cannot send the email. Can you help me setting up the firewall rules?

Thanks in advance.
When Router ask something, the chain is output, not input.
If it were input it means that the DNS would send the response before it is even asked...

Usually output is free, because if the router is infected, the infection can also bypass or remove useless firewall rules...

Who is online

Users browsing this forum: No registered users and 5 guests