Created
April 26, 2016 14:34
-
-
Save rlex/7841736d679f0afba0d12d8324c24999 to your computer and use it in GitHub Desktop.
IPv6 minimal firewall for mikrotik
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| add chain=input comment="Router: Allow established connections" connection-state=established | |
| add chain=input comment="Router: Allow related connections" connection-state=related | |
| add chain=input comment="Router: Allow IPv6 ICMP" protocol=icmpv6 | |
| add action=drop chain=input comment="Drop everything else" | |
| add chain=forward comment="LAN: Allow established connections" connection-state=established | |
| add chain=forward comment="LAN: Allow related connections" connection-state=related | |
| add chain=forward comment="LAN: Allow IPv6 ICMP" protocol=icmpv6 | |
| #example rule for opening port | |
| add chain=forward comment="LAN: Allow SSH" dst-port=22 protocol=tcp | |
| add chain=forward comment="Allow any to internet" out-interface=sixbone | |
| add chain=forward comment="Drop everything else" action=drop |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment