/ip firewall filter add action=drop chain=forward comment="drop from all in dns-flood address list" dst-port=53 protocol=udp src-address-list=dns-flood add chain=forward comment="add src IP to dns-flood address list" dst-limit=1,10,src-address/20s dst-port=53 protocol=udp add action=add-src-to-address-list address-list=dns-flood address-list-timeout=23h59m59s chain=forward dst-port=53 protocol=udp
Ignasi FS liked this on Facebook.
RT @Blackhold_: Blog] Mitigar ataque de DNS con mikrotik:
http://t.co/mX9QxTNfgH
Funciona?