Traffic freeze can also be due to incorrect operation of traffic flow. There have been many such cases. Firewall rule policy is executed from top to bottom and the order of entries also matters. We use "default" firewall rules as the basis for everything. Try to fix the firewall section and then see how the router works. Of course, a restart is required after the changes.
Code:
/interface listadd name=WANadd name=LAN/interface list memberadd interface=ether1 list=WANadd interface=bridge1 list=LAN/ip firewall filteradd action=accept chain=input comment="defconf: accept established,related,untracked" connection-state=established,related,untrackedadd action=drop chain=input comment="defconf: drop invalid" connection-state=invalidadd action=accept chain=input comment="defconf: accept ICMP" protocol=icmpadd action=accept chain=input comment="defconf: accept to local loopback (for CAPsMAN)" dst-address=127.0.0.1add action=accept chain=input comment=L2TP dst-port=500,1701,4500 protocol=udpadd action=accept chain=input comment="IKE IPSec" protocol=ipsec-espadd action=accept chain=input in-interface-list=LANadd action=drop chain=input comment="drop all else"add action=accept chain=forward comment="accept in ipsec policy" ipsec-policy=in,ipsecadd action=accept chain=forward comment="accept out ipsec policy" ipsec-policy=out,ipsecadd action=fasttrack-connection chain=forward comment="defconf: fasttrack" connection-state=established,relatedadd action=accept chain=forward comment="defconf: accept established,related, untracked" connection-state=established,related,untrackedadd action=drop chain=input comment="defconf: drop invalid" connection-state=invalidadd action=accept chain=forward comment="allow internet traffic" in-interface-list=LAN out-interface-list=WANadd action=accept chain=forward comment="allow port forwarding" connection-nat-state=dstnatadd action=drop chain=forward comment="drop all else"/ip firewall natadd action=masquerade chain=srcnat comment="defconf: masquerade" ipsec-policy=out,none out-interface-list=WANStatistics: Posted by johnson73 — Fri Feb 16, 2024 9:23 am