Skip to content

Instantly share code, notes, and snippets.

@samueljon
Forked from tiernano/gist:4344701
Last active March 9, 2016 22:46
Show Gist options
  • Save samueljon/d96e9e741686a5f13488 to your computer and use it in GitHub Desktop.
Save samueljon/d96e9e741686a5f13488 to your computer and use it in GitHub Desktop.
IPv6 Firewall rules for a MikroTik router to allow outgoing connections, but block incoming, unless they are responses...
/ipv6 firewall filter
add action=accept chain=input comment="Allow established connections" connection-state=established disabled=no
add action=accept chain=input comment="Allow related connections" connection-state=related disabled=no
add action=accept chain=input comment="Allow UDP" disabled=no protocol=udp
add action=drop chain=input comment="" disabled=no
add action=accept chain=forward comment="Allow any to internet" disabled=no out-interface=sit1
add action=accept chain=forward comment="Allow established connections" connection-state=established disabled=no
add action=accept chain=forward comment="Allow related connections" connection-state=related disabled=no
add action=drop chain=forward comment="" disabled=no
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment