MikroTik Tutorial 37 - Prevent clients from accessing your router

Video Statistics and Information

Video
Captions Word Cloud
Reddit Comments
Captions
I in this tutorial I'll be showing you how to prevent clients from accessing your router so go to IP firewall and we are going to create two address lists we're going to create one for support and support is the user or users who will be allowed to access your router configuration and for my router so I'm logged in as my current IP address is 192 168 dot 80.2 5-4 so I'm going to enter that all right one word of caution this IP address must be correct if not you won't be able to access your router after going through this tutorial so this address has to be correct and I would suggest that you make this address static on your device so you can access it but we don't if you are not connecting from this address you won't be able to access your router or if you have different sense you have multiple addresses that you want to use you could create a range so say for instance you have one fifty two two two five four so this is a this could be a range of users so you could actually create a range in address list or you could create multiple address leases so at this one I could copy this and I could change this to two five one is a two five four and I could have to address lists for the support group but for this tutorial I'll be only using one which is the two five four so remember ensure that this IP address is correct and also you know it all right so I'm going to create a address list know for the routers so my rota is one and two dot one sixty eight dot 88.1 okay so you can have a list of rotors are just one rotor now we're going to go go to the firewall rule and we're going to create a rule no to prevent users from accessing the router so we'll change up the chain to input and then change the protocol to TCP and the destination ports have a list of words that that you'll be able to access your router to make configuration changes so have ports for FTP ssh telnet web config and the last one is for wind box head over to advanced and the source address would be the support I'm going to check this box to say not so so this address is going to say not from support and the destination list would be the router so let me explain this rule so the input chain is where is at the point of entering the rotor so this would be at a port level so as soon as the connection is initiated with the rotor this would be the input of the rotor so the traffic is not routed yet so you want to capture the traffic at that point then these are the ports these are the destination ports that you are looking for and if the source address that is the address of the user is not the support is not in the support list and the destination is to the router then the action will be to drop those packets and then I'm going to add a comment and say block client from router ok apply ok so we have just created a rule and there is a next thing that we need to do and is to turn off the muck server so you know that wind box allows you to access the router using the MAC address we're going to turn off that because that means that anyone could actually try to access your router via that so it right over to the telnet interface tab and we're going to turn off muck we're going to turn off the mapping server but I'm told that we're going to turn off all the servers but a mock pink server turn we're going to turn it off and then the wind box interface we're going to this turn off the interface that will be used by wind box also we're going to disable the tenant interface for the mock server also so when to disable that so on below in telnet via mock either alright so no we have no configured rotor to block clients from accessing the rotor so that's it for this tutorial if you like this video please give me a thumbs up and if you haven't subscribed please remember to do so so that's it and thanks for watching you
Info
Channel: TKSJa
Views: 55,390
Rating: undefined out of 5
Keywords: Mikrotik, routeros, router os, router, wifi ap, network, network configuration, Mikrotic router configuration step by step, wifi configuration, mikrotik setup, routerboard, Winbox, routing, networking, security, ACL, CISCO network, WISP, QOS, load balancing
Id: YHf33RZspz0
Channel Id: undefined
Length: 6min 48sec (408 seconds)
Published: Sat Jul 01 2017
Related Videos
Note
Please note that this website is currently a work in progress! Lots of interesting data and statistics to come.