Hello Ronen,
Mikrotik is more of a boutique type router.. very powerful, inexpensive, etc but not a mainstream enterprise solution. You could say the same of Vyatta, OpenWRT, etc. Anyway, much of the concepts that Mikrotik's firewall uses are Linux terms. Per my previous email, there are a LOT of Linux URLs, commercially written books, etc. on the topic so you should start reading those materials.
--David KI6ZHD
On 04/08/2016 11:50 AM, R P wrote:
(Please trim inclusions from previous messages) _______________________________________________ Dear Rob Thank you for Brief explain Yes the Syntax of the Mikrotik is totally different then what i use to Also the mikrotik is not popular here I had hard time to find stores that sell it and i think im the only amateur who use it here The help that comes with the web interface is not so explainable do you know where i can find more explain on the commands (such as the explain you gave me about the establish and new and related) ? and if we talk on explain what is forward chain ? in and out i can understand but forward? and also there are a lot of commands in the action that i dont understand beside reject drop accept Where can i find description ? Thanks forward Ronen - 4Z4ZQ http://www.ronen.org
From: 44Net 44net-bounces+ronenp=hotmail.com@hamradio.ucsd.edu on behalf of Rob Janssen pe1chl@amsat.org Sent: Friday, April 8, 2016 11:13 AM To: 44net@hamradio.ucsd.edu Subject: Re: [44net] firewall rules at AMPR.ORG router ?
(Please trim inclusions from previous messages) _______________________________________________
some of the verbs such as established sound familiar from the days i used to work with Cisco access lists and checkpoint firewall the new command wasn't known to me
The firewall filters in a MikroTik (and on Linux in general) are far more advanced than the simple access lists in a Cisco router. On a Cisco router you generally just have static rules that allow e.g. traffic incoming on some ports. (there are some exceptions, e.g. "reflexive" access lists)
44Net mailing list 44Net@hamradio.ucsd.edu http://hamradio.ucsd.edu/mailman/listinfo/44net