Pazartesi, Kasım 4, 2024

Mikrotik için RDP Koruması

mikrotik router, mikrotik firewall, mikrotik cihazları, mikrotik logosu

Mikrotik Router cihazınızın arkasında yer alan sistemlerden özellikle RDP’ye çok fazla saldırı gelir, bunu önlemek için aşağıdaki işlemleri yapın. Ayrıca mümkünse port değiştirin.

/ip firewall filter

add chain=forward protocol=tcp dst-port=3389 src-address-list=rdp_blacklist action=drop \
comment="drop rdp brute forcers" disabled=no

add chain=forward protocol=tcp dst-port=3389 connection-state=new \
src-address-list=rdp_stage3 action=add-src-to-address-list address-list=rdp_blacklist \
address-list-timeout=10d comment="" disabled=no

add chain=forward protocol=tcp dst-port=3389 connection-state=new \
src-address-list=rdp_stage2 action=add-src-to-address-list address-list=rdp_stage3 \
address-list-timeout=1m comment="" disabled=no

add chain=forward protocol=tcp dst-port=3389 connection-state=new src-address-list=rdp_stage1 \
action=add-src-to-address-list address-list=rdp_stage2 address-list-timeout=1m comment="" disabled=no

add chain=forward protocol=tcp dst-port=3389 connection-state=new action=add-src-to-address-list \
address-list=rdp_stage1 address-list-timeout=1m comment="" disabled=no

Mirrored: https://alptekin.sunnetci.net/