Greetings, I am running RouterOS 7.7 with a very basic setup. When I setup my firewall rules I have a default deny all on the bottom of the list. When I add an allow for TCP traffic it also allows DNS UPD traffic, I am not sure why and it's hard to know if my filters are applying correctly. The following is my last filter number 8.
8 ;;; Default: Drop All
chain=forward action=drop log=yes log-prefix=""
When I allow the following rule, see the number for it's location, then DNS traffic is also allowed. The DNS Traffic is UDP Port 53
3 ;;; Allow HTTP(S) on LAN Net
chain=forward action=accept connection-state=established,related,new,untracked protocol=tcp port=443,80 log=yes log-prefix=""
Right not for testing these are the only two filters enabled on the firewall.
Why is the DNS trafficking going through on the forward chain?