Under linux I could setup iptables rules which affected all pptp users, by referencing the interface like pptp-*
Under RBOS I can no longer do so - I think. Does that mean I can only create filters for PPTP control based on their source address? That seems very risky!
Thanks
Re: Firewall rules - how control <pptp-*> interface traffic?
you can add static pptp entries in "/interface pptp-server" menu and use those interfaces.
Re: Firewall rules - how control <pptp-*> interface traffic?
but that means I would have to create one new interface for EACH user. Then, I would have to replicate the firewall rules for EACH interface.
Is there a way to reference all interfaces by prefix like pptp-*
otherwise I would have to now create one (or more) firewall rules to EACH interface (for EACH user).
Is there a way to reference all interfaces by prefix like pptp-*
otherwise I would have to now create one (or more) firewall rules to EACH interface (for EACH user).
-
-
Inssomniak
Member
- Posts: 332
- Joined:
Re: Firewall rules - how control <pptp-*> interface traffic?
There's no easy to add each user to the address list (road warrior scenario)...or perhaps you could be more specific (maybe Im missing something).
Firewall rules - how control interface traffic?
There is an option in /ppp profile to add to address list.
http://wiki.mikrotik.com/wiki/Manual:PPP_AAA
http://wiki.mikrotik.com/wiki/Manual:PPP_AAA
Re: Firewall rules - how control <pptp-*> interface traffic?
OK - so the address list is associated with the profile, and the profile is associated with one or more users/secrets.
OK - thanks.
OK - thanks.
Who is online
Users browsing this forum: aboshhab and 64 guests