Basic Security Checklist in RouterOS

Dear Quick-IT,
Many thanks for your comment and kind words! We’re so glad you’ve enjoyed them! Stay tuned, we have more coming!

That's a fantastic attitude, and it's great to see you embracing learning and growth in the world of networking and RouterOS. Practicing what you've learned and applying concepts to real-life projects will undoubtedly help you gain a deeper understanding and mastery of the subject matter.
As you await new videos, exploring other resources and channels will help broaden your knowledge. Engaging in online forums, reading recent RouterOS changelogs, and participating in configuration challenges related to RouterOS v7 will further develop your skills and keep you current on updates and changes.
Remember to subscribe to the CZcams channel and enable notifications to stay informed about new video uploads. Meanwhile, if you have any questions or need clarification on any topic, feel free to ask. We're here to support you on your learning journey. Happy networking!

Thank you for your insightful question. Our current training is centered on laying a solid foundation in the fundamentals of MikroTik RouterOS, particularly for first-time users or those who are not yet fully acquainted with MikroTik RouterOS and its new interfaces. Our goal is to ensure that participants grasp all the basic networking concepts within RouterOS at an introductory level. While we understand the importance and relevance of your question, this session is not tailored to delve into such specific and advanced topics. However, we are looking forward to exploring these more detailed and complex concepts in future sessions. Your interest and concerns are greatly appreciated, and they help us shape our upcoming content. Thank you for sharing your thoughts with us.

When you disable the "Allow Remote Requests" option on a MikroTik router, the DNS server in your network may stop functioning properly. To resolve this issue, you can consider the following two options:
1. Modify the default DNS configuration in your network by navigating to IP > DHCP Server > Networks. Edit the existing network and replace the default DNS settings with a public DNS server, such as 1.1.1.1, 8.8.8.8, or 4.2.2.4. After making this change, release and renew your device's IP configuration to obtain a new IP address from your DHCP server.
2. Or assign static DNS configurations to all active devices within your network.
Switching your MikroTik router's DNS server functionality to a public DNS server may increase network latency. However, you don't need to worry about missing firewall rules or security issues. Firewall configurations from previous sessions can secure your router even when "Allow Remote Requests" is enabled, so there's no need to be concerned about this feature.

@@MikroTikCanada Thank you, very clear guidance, appreciated! One hesitation: I have an ad-blocker within LAN and plan to be using it as default DNS resolver. So if I understand the concepts correctly, I can just enter my network ad-blocker's IP address as DNS Server in MikroTik and point the ad-blocker to public DNS server and that shouldn't be an issue.

@@GokhanKaya did it worked if you tried it , and are you talking about something like pi-hole ?

@@seedofchaoss yes, I have a pi-hole and it works fine now. Thanks for checking!