Код: Выделить всё
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment="place hotspot rules here" disabled=no
add action=accept chain=input comment=icmp disabled=no protocol=icmp
add action=accept chain=input comment=established connection-state=established disabled=no
add action=accept chain=input comment=related connection-state=related disabled=no
add action=accept chain=input comment=manage disabled=no in-interface=bridge-local
add action=accept chain=input disabled=no dst-address=192.168.0.0/24 dst-port=23815 in-interface=!wan \
protocol=tcp
add action=accept chain=input disabled=no dst-address=192.168.0.102 dst-port=23815 in-interface=!wan port=
protocol=udp
add action=drop chain=input comment="all other drop" disabled=no in-interface=wan
add action=drop chain=forward comment="Drop invalid connection packets" connection-state=invalid disabled=
add action=accept chain=forward comment="Allow established connections" connection-state=established disab
no
add action=accept chain=forward comment="Allow related connections" connection-state=related disabled=no
add action=accept chain=forward comment="Allow acess to internet" disabled=no in-interface=bridge-local \
out-interface=wan src-address-list=inet
add action=drop chain=forward comment="\C2\F1\E5 \EB\E8\F8\ED\E5\E5 \EE\F2\F1\E5\EA\E0\E5\EC \ED\E0 \E2\F5
\E4\FF\F9\E5\EC \E8\ED\F2\E5\F0\F4\E5\E9\F1\E5" disabled=yes
переделал на input, но без отключения последнего правила не работает