Mikrotik limit Socks server access from LAN
Open WinBox
. Go to IP > Socks > Access . The Socks Access window is similar to filter rule window. Default action in Socks Access is accept
. This means that if no rule get matched, socks server accept that connection.
Now add a rule with accept
action your LAN IP addresses range as its Src Address
. Then add a rule with deny
action. Left other field unchanged. This rule guaranty denying of any socks request other than your LAN IP addresses.
If socks server is running on port 1080
and your LAN IP address range is 192.168.10.0/24
use this in Mikrotik terminal:
/ip firewall filter add action=drop chain=input dst-port=1080 protocol=tcp src-address=!192.168.10.0/24
This command filters traffic by Mikrotik firewall.