Block Porn with DNS settings in the Router Mikrotik Newsletters

Posted in Labels: | 8:31 PM

Browse » Home » » Block Porn with DNS settings in the Router Mikrotik Newsletters

Block Porn with DNS settings in the Router Mikrotik Newsletters



1. Variables that need to know to be used in the implementation process:
Login and password on Mikrotik with full authority or equivalentadmin.
Mikrotik Router OS 2.9.X or more recent.
Newsletters NS1: 180 131 144 144
NS2 Newsletters: 180 131 145 145
Interface ether2 in Mikrotik to connect with the user or the distribution of LAN switches.
Ether2 interface IP Address


2. Implementation:
Adding NS1 and NS2 on the configuration of DNS SettingsNewsletters Mikrotik:




Do log on mikrotik with Winbox, then do change the settings asfollows:
Go to the menu: IP - DNS - Settings.
In the DNS Settings:
Turn, and the contents of the Primary DNS: 180 131 144 144
Turn, and the contents of Secondary DNS: 180 131 144 145
Enable the option Allow Remote Requests
Then select Apply then OK.
Next is to define the group DNS Server




Go to the menu: IP - Firewall - Address Lists.
Select the + sign to add data on the Address Lists.
On the Firewall Address List:
Name: filled with the DNS server group name that is DNS.
Address: filled with NS1 IP Newsletters namely 180 131 144 144
Select Apply - OK afterwards Enable
Repeat the process 1 to 3 by changing the variable with the IPAddress and IP interfaces NS2 Newsletters ether2 on Mikrotik. Sothe end result will have 3 DNS in the address list

3. Next add a filter on the firewall:
The function of this filter is to restrict users can only use the DNSServer Nawala NS1, NS2 Newsletters ether2 interface and IPaddress




Go to the menu: IP - Firewall - Filter Rules.
Select the + sign to add a New Firewall Rule.
In General:
Chain: input
Protocol: 17 (udp)
Ff. Port: 53
Ins. Interface: ether2
At Advanced:
Ff. Address List: enable the option (!): DNS\






In Action:Action: dropSelect Apply then OK.4. Repeat the process 1 to 3 by changing the protocol at the process to 3 to 6 (tcp).After the settings finished, do change the IP DNS on the PC user to use the IP address ether2, NS1 or NS2 Nawala Nawala, this is because the user will not be able to use DNS in addition to the above third IP.

Comments (1)comments

1 Response to "Block Porn with DNS settings in the Router Mikrotik Newsletters"

  1. Squidblacklist says:
    May 22, 2016 at 6:29 PM

    Real Blacklists for Mikrotik RouterOS are available from Squidblacklist.org

    http://www.squidblacklist.org/downloads/squidblacklists/tik/tik-porn.tar.gz

Post a Comment