When processing a chain, rules are taken from the chain in the order they are listed there from top to bottom. If a packet matches the criteria of the rule, then the specified action is performed on it, and no more rules are processed in that chain (the exception is the passthrough action).
If a packet has not matched any rule within the chain, then it is accepted.
Action:log
add a message to the system log containing following data: in-interface, out-interface, src-mac, protocol, src-ip:port->dst-ip:port and length of the packet. After packet is matched it is passed to next rule in the list, similar as passthrough
Acction:passthrough
ignore this rule and go to next one (useful for statistics).
Source:
Manual:IP/Firewall/Filter
http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Filter
Related:
How To Move Filter Rule Position In Mikrotik
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment