I would like to make rules that will allow traffic only from certain mac addresses, and drop everything else. Do you have any ideas? I have tried /ip firewall filter add action=drop chain=forward But it did not work.
Asked
Active
Viewed 1,712 times
0
1 Answers
0
Seems you're looking at the wrong tool. The IP firewall does (by default) not do anything based on MAC addresses - or any filtering at all if source and target are in the same subnet, as routing does not apply in this case. If you want to set up such rules, you need to use the Bridge Filter feature of RouterOS. Be aware that Layer2/Bridge Filters require quite a bit of processing power.
andaris
- 316