MikroTik port 53 DNS service DDoS attack mitigation and prevention

Thread starter Andy
Start date 29 Oct 2020

Andy

Well-known member

Creative Team

29 Oct 2020

#1

If you found a router that's having botnet attacks on port 53 (DNS), you can use this script to mitigate the attack:

Rich (BB code):

/ip firewall filter
add chain=input in-interface=pppoe-out1-ISP protocol=udp dst-port=53 action=drop
add chain=input in-interface=pppoe-out1-ISP protocol=tcp dst-port=53 action=drop

The in-interface part might be slightly different (it could be ether1 or pppoe-out1 with another name)

Short URL:

Share:

Facebook X (Twitter) LinkedIn Reddit Pinterest Tumblr WhatsApp Email Link

This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
By continuing to use this site, you are consenting to our use of cookies.

Accept Learn more…

Back

Top