Second, what could be causing the source address to not be translated?
The firewall rules are quite simple:
Code: Select all
/ip firewall nat
add action=masquerade chain=srcnat comment="" disabled=no out-interface=public
/ip firewall nat
add action=masquerade chain=srcnat comment="" disabled=no out-interface=public
Duh. Thank you. =) Sometimes you need someone to point out the obvious. I already had a rule to drop invalid connections but it was in the wrong place. Everything is working properly after relocating it.Drop invalid packets in firewall.