Let's say an IP with 100 random ports, could be tcp or udp is attacking my single IP 20.20.20.20. on port 2020.
I want to make firewall rule to automatically add any IP that's making connection to me from more than 100 random ports to blocklist.
How would the firewall rule look like? I tried something like this but i don't even know if it works or not.\
I've been studying Mikrotik recently but i haven't reached IP Firewall yet so I'm sorry not if this question is kind of dumb.
I want to make firewall rule to automatically add any IP that's making connection to me from more than 100 random ports to blocklist.
How would the firewall rule look like? I tried something like this but i don't even know if it works or not.\
Code:
0 chain=input action=add-src-to-address-list connection-state=new connection-limit=100,32 protocol=tcp address-list=block-list address-list-timeout=none-dynamic src-port=0-65535 dst-port=2020 log=no log-prefix="" 1 chain=forward action=drop src-address-list=block-list log=no log-prefix=""Statistics: Posted by MoistyFeet — Fri Jan 05, 2024 11:12 pm