It obviously works fine if it also blocks ARP.Code:/interface ethernet switch ruleadd switch=switch1 ports=ether41-node102 src-address=192.168.1.30/32 comment="Allow only IP 192.168.1.30"add switch=switch1 ports=ether41-node102 new-dst-ports="" comment="Block all other IPs"[/quote]
You wrote it yourself in the rules: match 192.168.1.30/32 and block everything else.
ARP doesn't use IP... so it's rightly blocked.
Statistics: Posted by rextended — Tue Mar 11, 2025 2:37 pm