Problem:
Kunde möchte eine Mikrotik Firewall konfigurieren.
Lösung:
Mit Mikrotik können Sie das wie unten angezeigt machen.
;;; defconf: accept established,related,untracked chain=input action=accept connection-state=established,related,untracked ;;; allow tcp ports to outside chain=forward action=accept protocol=tcp src-address-list=test-net dst-port=80,123,443,853,5228,7743,8086,8087,10444,12686,12687,12677,12700 log=no log-prefix="" ;;; allow udp ports to outside chain=forward action=accept protocol=udp src-address-list=test-net dst-port=53,123,443,3478 log=no log-prefix="" ;;; allow syslog chain=forward action=accept protocol=udp dst-address=151.252.34.222 src-address-list=test-net dst-port=514 log=no log-prefix=""
Fazit:
Diese Konfiguration ist nicht abschliessend.