Mikrotik: How do I set up the multi-profile?

through the creation of firewall rules, it is possible to use more navigation profiles (multi profile) on the same network in this way, two or more devices connected to the same network will be able to use different filtering rules and it will be possible to divide the data traffic more easily for further information about the multi profile the multiprofile and multipolitics docid\ secwouuow9zyjjsepcrgj important this guide can be used only in workgroup environments, hence without an active directory server note the following commands allow you to create the rules needed to manage five navigation profiles you are not however obliged to use all of the profiles depending on your needs, you may just delete the unnecessary parts of the code modify the following fields before executing the commands on the mikrotik terminal < list ip1> list of ip addresses that will be assigned to “ profile1 ” < list ip2> list of ip addresses that will be assigned to “ profile2 ” (if present) < list ip3> list of ip addresses that will be assigned to “ profile3 ” (if present) < list ip4> list of ip addresses that will be assigned to “ profile4 ” (if present) note it is possible to add a single ip or also a range of ips using the “ ” symbol between the first and the last ip in the range (e g 192 168 1 2 192 168 1 100) < profile1 > name assigned to the first profile < profile2 > name assigned to the second profile (if present) < profile3 > name assigned to the third profile (if present) < profile4 > name assigned to the fourth profile (if present) /ip firewall address list add address= < list ip1> list= < profile1 > add address= < list ip2> list= < profile2 > add address= < list ip3> list= < profile3 > add address= < list ip4> list= < profile4 > /ip firewall nat \# < profile1 > add action=dst nat chain=dstnat comment= < profile1 > dst port=53 protocol=udp \\ src address list= < profile1 > to addresses=185 236 104 114 to ports=53 add action=dst nat chain=dstnat comment= < profile1 > dst port=53 protocol=tcp \\ src address list= < profile1 > to addresses=185 236 104 114 to ports=53 \# < profile2 > add action=dst nat chain=dstnat comment= < profile2 > dst port=53 protocol=udp \\ src address list= < profile2 > to addresses=185 236 104 124 to ports=53 add action=dst nat chain=dstnat comment= < profile2 > dst port=53 protocol=tcp \\ src address list= < profile2 > to addresses=185 236 104 124 to ports=53 \# < profile3 > add action=dst nat chain=dstnat comment= < profile3 > dst port=53 protocol=udp \\ src address list= < profile3 > to addresses=185 236 104 134 to ports=53 add action=dst nat chain=dstnat comment= < profile3 > dst port=53 protocol=tcp \\ src address list= < profile3 > to addresses=185 236 104 134 to ports=53 \# < profile4 > add action=dst nat chain=dstnat comment= < profile4 > dst port=53 protocol=udp \\ src address list= < profile4 > to addresses=185 236 104 144 to ports=53 add action=dst nat chain=dstnat comment= < profile4 > dst port=53 protocol=tcp \\ src address list= < profile4 > to addresses=185 236 104 144 to ports=53 \# profilo default add action=dst nat chain=dstnat comment=default dst port=53 protocol=udp \\ to addresses=185 236 104 104 to ports=53 add action=dst nat chain=dstnat comment=default dst port=53 protocol=tcp \\ to addresses=185 236 104 104 to ports=53 important the default profile must always have lower priority compared to the other rules