Port Knocking Step by Step - Mikrotik RouterOS v6 & 7

Поделиться
HTML-код
  • Опубликовано: 11 сен 2024
  • #mikrotik #routeros7 #mikrotikSecurity
    Port knocking is a mechanism to secure a network device by closing all the ports-even those you know will be used. Those ports will be opened on demand if-and only if-the connection request provides the secret knock (prearranged pattern). Port Knocking is one layer of security, it MUST NOT be our only form of defense
    **************************SAMPLE CONFIG********************
    *****Intended for lab purposes********************************
    /ip firewall filter
    add action=accept chain=input comment="Established and Related" connection-state=established,related
    add action=drop chain=input comment=Invalid connection-state=invalid
    add action=accept chain=input comment="Allow Winbox & SSH to Trusted IPs" dst-port=8291,22 in-interface=ether1 protocol=tcp src-address-list=trusted-ips
    add action=add-src-to-address-list address-list=phase1-knocking address-list-timeout=1m chain=input comment="Phase 1 knocking" dst-port=8000 in-interface=ether1 protocol=tcp
    add action=add-src-to-address-list address-list=phase2-knocking address-list-timeout=1m chain=input comment="Phase 2 Knocking" dst-port=7000 in-interface=ether1 protocol=tcp src-address-list=\
    phase1-knocking
    add action=add-src-to-address-list address-list=trusted-ips address-list-timeout=1d chain=input comment="Phase 3 Knocking" dst-port=7440 in-interface=ether1 protocol=tcp src-address-list=\
    phase2-knocking
    add action=drop chain=input comment="Drop Connections From Internet" in-interface=ether1
    *********************END SAMPLE CONFIG************
    Check more videos on my channel
    / @thenetworktrip
    Connect with Wilmer Almazan
    LinkedIN: / wilmeralmazan
    Facebook: / nsswilmeralmazan
    Twitter: / wilmer_almazan
    Instagram: / wilmer_almazan
    Personal Blog: thenetworktrip...
    mikrotik
    routeros 7
    ospf
    mtcna
    mtcre
    cybersecurity
    routing
    cloud computing
    virtualization
    switching
    network automation

Комментарии • 11

  • @ZX-8Bits
    @ZX-8Bits Год назад +1

    Great! Thanks for sharing. Very well explained! Cheers from Mesi's City - Rosario - Argentina!

  • @laurenttaieb65
    @laurenttaieb65 Год назад +1

    perfectly explained. Thanks

  • @PabloMateoDrappo
    @PabloMateoDrappo 2 года назад

    Excellent Tutorial!

  • @ABAMSYTEL
    @ABAMSYTEL Год назад

    GREAT VIDEO!!! tks

  • @OstJoker
    @OstJoker Год назад

    Thank you for the video. Unfortunately there is no option to set port knocking "action" as "run script". IMHO, it will be extremely useful in many use cases. Maybe you know some workaround how can I force mikrotik to run script after successful port knocking?

  • @SiBex_ovh
    @SiBex_ovh Год назад

    I use that PK but have additonal rule who detect any knocking into range 6000-9000 (without my 3 ports) and I block that IP at 1h. This is used when I cannot connect from trusted constance public ip. This prevent me from that knocking automatics.

  • @jeytis72
    @jeytis72 2 года назад

    Very good. Could we have the Eve-ng project file? Thanks

  • @EstebanAbisaiTrinidadGomez
    @EstebanAbisaiTrinidadGomez 14 дней назад

    porque en la 7.15.3 no aparecen la src address list en advance

Следующие
Автовоспроизведение
Multi Area OSPF - Mikrotik RouterOS v720:42Multi Area OSPF - Mikrotik RouterOS v7
Multi Area OSPF - Mikrotik RouterOS v7Wilmer Almazan / The Network Trip
Просмотров 12 тыс.
Mikrotik VLANs - CRS1xx & CRS2xx - Mikrotik Tutorial21:53Mikrotik VLANs - CRS1xx & CRS2xx - Mikrotik Tutorial
Mikrotik VLANs - CRS1xx & CRS2xx - Mikrotik TutorialWilmer Almazan / The Network Trip
Просмотров 33 тыс.
Port knocking with MikroTik11:36Port knocking with MikroTik
Port knocking with MikroTikMikroTik
Просмотров 17 тыс.
10 Things You SHOULD Be Buying at Costco in September 202420:1010 Things You SHOULD Be Buying at Costco in September 2024
10 Things You SHOULD Be Buying at Costco in September 2024The Deal Guy
Просмотров 773 тыс.
September 06 2024 Papua New Guinea looks forward to Pope Francis' arrival01:01September 06 2024 Papua New Guinea looks forward to Pope Francis' arrival
September 06 2024 Papua New Guinea looks forward to Pope Francis' arrivalVatican News
Просмотров 111 тыс.
The Apprentice | Official Trailer | Exclusively in Theaters October 1101:29The Apprentice | Official Trailer | Exclusively in Theaters October 11
The Apprentice | Official Trailer | Exclusively in Theaters October 11Briarcliff Entertainment
Просмотров 271 тыс.
SATURDAY NIGHT - New Trailer (HD)02:23SATURDAY NIGHT - New Trailer (HD)
SATURDAY NIGHT - New Trailer (HD)Sony Pictures Entertainment
Просмотров 247 тыс.
MikroTik switches are LEGIT!15:02MikroTik switches are LEGIT!
MikroTik switches are LEGIT!DatacenterDude
Просмотров 31 тыс.
Recursive Routing + Failover - Mikrotik RouterOS v720:35Recursive Routing + Failover - Mikrotik RouterOS v7
Recursive Routing + Failover - Mikrotik RouterOS v7Wilmer Almazan / The Network Trip
Просмотров 46 тыс.
Is your MikroTik vulnerable...?19:43Is your MikroTik vulnerable...?
Is your MikroTik vulnerable...?The Network Berg
Просмотров 15 тыс.
Mikrotik VLANs - CRS3XX Step by Step - Mikrotik Tutorial30:04Mikrotik VLANs - CRS3XX Step by Step - Mikrotik Tutorial
Mikrotik VLANs - CRS3XX Step by Step - Mikrotik TutorialWilmer Almazan / The Network Trip
Просмотров 157 тыс.
Controller Bridge / Switch - Mikrotik (Full Lab)23:22Controller Bridge / Switch - Mikrotik (Full Lab)
Controller Bridge / Switch - Mikrotik (Full Lab)Wilmer Almazan / The Network Trip
Просмотров 6 тыс.
Policy Based Routing + Failover - RouterOS v731:09Policy Based Routing + Failover - RouterOS v7
Policy Based Routing + Failover - RouterOS v7Wilmer Almazan / The Network Trip
Просмотров 28 тыс.
VXLAN Mikrotik - RouterOS v716:36VXLAN Mikrotik - RouterOS v7
VXLAN Mikrotik - RouterOS v7Wilmer Almazan / The Network Trip
Просмотров 16 тыс.
DHCP Relay - Mikrotik21:08DHCP Relay - Mikrotik
DHCP Relay - MikrotikWilmer Almazan / The Network Trip
Просмотров 6 тыс.
MikroTips: How to firewall21:56MikroTips: How to firewall
MikroTips: How to firewallMikroTik
Просмотров 146 тыс.
ДОМИК ДЛЯ БЕРЕМЕННОЙ БЕЛКИ#cat00:45ДОМИК ДЛЯ БЕРЕМЕННОЙ БЕЛКИ#cat
ДОМИК ДЛЯ БЕРЕМЕННОЙ БЕЛКИ#catЛайки Like
Просмотров 569 тыс.
Эркак ва Аёл #rek #uzbwedding #love #kulgilivideo #live #svadbauz #uzbekistanmusic #music #hahaidea00:18Эркак ва Аёл #rek #uzbwedding #love #kulgilivideo #live #svadbauz #uzbekistanmusic #music #hahaidea
Эркак ва Аёл #rek #uzbwedding #love #kulgilivideo #live #svadbauz #uzbekistanmusic #music #hahaideaMuxtor Rais
Просмотров 272 тыс.
MAGISCHES MAKE-UP: GEHEIMNISSE UND DUNKLE AUGENRINGE VERSTECKEN! 😂✨💄00:15MAGISCHES MAKE-UP: GEHEIMNISSE UND DUNKLE AUGENRINGE VERSTECKEN! 😂✨💄
MAGISCHES MAKE-UP: GEHEIMNISSE UND DUNKLE AUGENRINGE VERSTECKEN! 😂✨💄La La Lebensfreude
Просмотров 3,4 млн
Apple Event - September 91:38:50Apple Event - September 9
Apple Event - September 9Apple
Просмотров 25 млн
A small kitten was dumped #cat #kitten #cutecat00:41A small kitten was dumped #cat #kitten #cutecat
A small kitten was dumped #cat #kitten #cutecatStocat
Просмотров 4,5 млн
ОСЕННИЙ ЖОР. ЧАЙКИ НЕ ВРУТ. РЫБАЛКА на хищную рыбу в сентябре.26:14ОСЕННИЙ ЖОР. ЧАЙКИ НЕ ВРУТ. РЫБАЛКА на хищную рыбу в сентябре.
ОСЕННИЙ ЖОР. ЧАЙКИ НЕ ВРУТ. РЫБАЛКА на хищную рыбу в сентябре.Always Alone
Просмотров 285 тыс.
Евгений Кузнецов кого-то нам сильно напоминает🤬🔥 #КХЛ00:12Евгений Кузнецов кого-то нам сильно напоминает🤬🔥 #КХЛ
Евгений Кузнецов кого-то нам сильно напоминает🤬🔥 #КХЛКХЛ
Просмотров 184 тыс.
Когда дочь блогер приехала в деревню #отдых #юмор #shorts00:19Когда дочь блогер приехала в деревню #отдых #юмор #shorts
Когда дочь блогер приехала в деревню #отдых #юмор #shortsTravel24
Просмотров 233 тыс.