1. Andy

    MikroTik port 53 DNS service DDoS attack mitigation and prevention

    If you found a router that's having botnet attacks on port 53 (DNS), you can use this script to mitigate the attack: /ip firewall filter add chain=input in-interface=pppoe-out1-ISP protocol=udp dst-port=53 action=drop add chain=input in-interface=pppoe-out1-ISP protocol=tcp dst-port=53...
  2. Andy

    MikroTik DDoS Detection & Blocking Firewall Filter Rule

    I found this method is the best way to prevent DDoS Attack from your users to attacked resources and drop DDoS directed to your clients. First, we catch all new connections and send them to dedicated firewall chain: /ip firewall filter add chain=forward connection-state=new action=jump...