Skip to content
Simple Ansible role and playbook to harden a Mikrotik RouterOS device
Branch: master
Clone or download
Fetching latest commit…
Cannot retrieve the latest commit at this time.
Type Name Latest commit message Commit time
Failed to load latest commit information.
hosts Initial Commit Jul 26, 2019
mikrotik-armor.yml Initial Commit Jul 26, 2019



Ansible playbook to perform common hardening funtions on a RouterOS device. This is almost 100% based on the Manito Networks suggestions for hardening a device.


Why not? Having a much more secure base to start from is useful in saving you unpleasant work later.


Install ansible. Clone the repo and adjust the variables, accounting for your own file hierarchy. Then run the command: ansible-playbook /etc/ansible/playbooks/mikrotik-armor.yml

To Do

Adjust as necessary

other stuff

Use anything I write at your own peril.

Sometimes I put stuff on my website. You can contact me via email or Twitter or LinkedIN. I'm not always responsive in a timely manner and probably won't be able to help you do ansible stuff, but generally do eventually reply.

You can’t perform that action at this time.