Community discussions

MikroTik App
 
tigro11
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 87
Joined: Tue Feb 20, 2018 12:31 am

Order Firewall rules

Tue Jan 24, 2023 5:54 pm

Hi guys, only help to check the order of execution of the rules on the firewall.
I posted 2 photos in which the order of execution is the ones I use now and those that Mikrotik uses from default.
I believe that my rules must be reorganized for the correct execution, given that if I move the rules totally changes its operation.
Could anyone tell me if my rules must be positioned differently?
Thank you all
You do not have the required permissions to view the files attached to this post.
 
User avatar
anav
Forum Guru
Forum Guru
Posts: 19103
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:

Re: Order Firewall rules

Tue Jan 24, 2023 5:55 pm

I dont read jpegs............. and that format is particularly stressing.
/export file=anynameyouwish ( minus router serial # and any public WANP information )
 
User avatar
rextended
Forum Guru
Forum Guru
Posts: 11982
Joined: Tue Feb 25, 2014 12:49 pm
Location: Italy
Contact:

Re: Order Firewall rules

Tue Jan 24, 2023 6:13 pm

Thank you all
When you took your exams at school, did you bring the photo of the cover of your notebook to the teacher to have them corrected?
 
User avatar
anav
Forum Guru
Forum Guru
Posts: 19103
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:

Re: Order Firewall rules

Tue Jan 24, 2023 7:01 pm

My side it hurts LOL..

To be fair the OP may not know about exporting the config from the CLI terminal window in winbox!!!
One would think a frequent visitor would have some basic knowledge though.
 
User avatar
rextended
Forum Guru
Forum Guru
Posts: 11982
Joined: Tue Feb 25, 2014 12:49 pm
Location: Italy
Contact:

Re: Order Firewall rules

Tue Jan 24, 2023 7:10 pm

Rule # 9 on case of DDoS attack, help the attacker to reboot this router for kernel failure, out of memory...
 
tigro11
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 87
Joined: Tue Feb 20, 2018 12:31 am

Re: Order Firewall rules

Tue Jan 24, 2023 7:20 pm

Rule # 9 on case of DDoS attack, help the attacker to reboot this router for kernel failure, out of memory...
Thanks for your kindness
 
User avatar
rextended
Forum Guru
Forum Guru
Posts: 11982
Joined: Tue Feb 25, 2014 12:49 pm
Location: Italy
Contact:

Re: Order Firewall rules

Tue Jan 24, 2023 7:40 pm

I wasn't kidding, I was serious,
any rule that adds the attacking IP in the memory of the device, in case of thousands of IPs of a DDoS, completely exhausts the memory of the router...
 
tigro11
Frequent Visitor
Frequent Visitor
Topic Author
Posts: 87
Joined: Tue Feb 20, 2018 12:31 am

Re: Order Firewall rules

Tue Jan 24, 2023 7:50 pm

I wasn't kidding, I was serious,
any rule that adds the attacking IP in the memory of the device, in case of thousands of IPs of a DDoS, completely exhausts the memory of the router...
Sorry I was not joking, since other users seem to be making fun of me, I'm not a teacher with Mikrotik, but I do my best.
Thank you for the help you give me and I'm not kidding
thank you
 
User avatar
anav
Forum Guru
Forum Guru
Posts: 19103
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:

Re: Order Firewall rules

Tue Jan 24, 2023 11:16 pm

Since you didnt post your config as suggested I cannot help.

Who is online

Users browsing this forum: gogle, madstupid, maxslug, mkx and 83 guests