Knowledgebase
19Important & Helpful Info 2Sales & Quoting Tools 8Add Customers & Services 9Customer Billing 12Phone Numbers 106Hosted PBX 15SIP Trunking 15Microsoft Teams Direct Routing 6IP Fax 2Audio Conferencing 15Platform Settings 7Platform Reports 10DLC - SMS Registration Requirements 25Router & Network Help 4VoIP Troubleshooting Tools 7Release Notes
Knowledgebase: Router & Network Help > Mikrotik Router Assistance > Unofficial Guides
Mikrotik - DNS DoS Attack Prevention
Posted by , Last modified by Albert Diaz on 13 September 2018 12:15 AM

If you are experiencing high ping times and/or slower than normal internet speeds, you might be a victim fo a DNS DoS attack.

This article will walk you through creating a firewall rule on Mikrotik routers to block this attack.

 

  1. Log into your Mikrotik and navigate to IP >> Firewall >> then select the Filter Rules tab.

2. Click on the + icon to add a new rule and input these settings:

  • Chain = "input".
  • Protocol = "udp".
  • Dst. Port = "53"
  • Interface = "ether1-gateway" (or whichever WAN port you are using)

4. Click on the Action tab and select "drop" then click Apply.

 

This will effectively stop external DNS requests to your firewall.

If you have any questions please submit a ticket to our Technical Support Department.

(8 vote(s))
Helpful
Not helpful
Comments (0)
Post a new comment
 
 
Full Name:
Email:
Comments:
CAPTCHA Verification 
 
Please enter the text you see in the image into the textbox below (we use this to prevent automated submissions).