I'll find the topic as soon as i get to the office. 'Till then, here are the prints.
In teh firewall export, there's a lot of rules that are made but not in use. That is for the future setup and was required for me to make at the time.
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK BROADCAST INTERFACE
0 X 192.168.1.205/24 192.168.1.0 192.168.1.255 BETA LAN (eth1)
1 X 192.168.2.2/24 192.168.2.0 192.168.2.255 ABSOLUT (eth3)
2 *.108.*.14/30 *.108.*.12 *.108.*.15 VERAT (eth4)
3 D *.148.*.145/22 *.148.*.0 *.148.*.255 SBB (eth2)
4 10.0.0.1/24 10.0.0.0 10.0.0.255 ether5
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 X S 0.0.0.0/0 VERAT (eth4) 1
1 X S 0.0.0.0/0 ABSOLUT (eth3) 1
2 X S 0.0.0.0/0 192.168.1.253 1
3 X S 0.0.0.0/0 62.108.98.13 1
4 X S 0.0.0.0/0 62.108.98.13 1
5 X S 0.0.0.0/0 SBB (eth2) 1
6 A S 0.0.0.0/0 62.108.98.13 1
7 X S 0.0.0.0/0 62.108.98.13 1
8 ADC 10.0.0.0/24 10.0.0.1 ether5 0
9 ADC *.108.*.12/30 *.108.*.14 VERAT (eth4) 0
10 ADC *.148.*.0/22 *.148.*.145 SBB (eth2) 0
Flags: D - dynamic, X - disabled, R - running, S - slave
0 R name="BETA LAN (eth1)" type="ether" mtu=1500 l2mtu=1524
1 R name="SBB (eth2)" type="ether" mtu=1500 l2mtu=1524
2 X name="ABSOLUT (eth3)" type="ether" mtu=1500 l2mtu=1524
3 R name="VERAT (eth4)" type="ether" mtu=1500 l2mtu=1524
4 R name="ether5" type="ether" mtu=1500 l2mtu=1524
# jan/03/1970 02:29:12 by RouterOS 4.16
# software id = KP1J-ENEL
#
/ip firewall address-list
add address=66.220.144.0/20 comment="" disabled=no list=FACEBOOK
add address=69.63.176.0/20 comment="" disabled=no list=FACEBOOK
add address=204.15.20.0/22 comment="" disabled=no list=FACEBOOK
/ip firewall connection tracking
set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \
tcp-close-wait-timeout=10s tcp-established-timeout=1d \
tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no \
tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
/ip firewall filter
add action=accept chain=forward comment="" disabled=no dst-address=10.0.0.2 \
dst-port=4899 protocol=tcp
/ip firewall mangle
add action=mark-routing chain=prerouting comment="" disabled=yes \
new-routing-mark="SVE OSTALO TCP" passthrough=yes src-address=\
192.168.1.0/24
add action=mark-routing chain=prerouting comment="" disabled=no dst-address=\
80.93.235.20 new-routing-mark="KA BETINIM SAJTOVIMA" passthrough=no \
protocol=tcp src-address=192.168.1.0/24
add action=mark-routing chain=prerouting comment="" disabled=no dst-address=\
80.93.235.24 new-routing-mark="KA BETINIM SAJTOVIMA" passthrough=no \
protocol=tcp src-address=192.168.1.0/24
add action=mark-routing chain=prerouting comment="" disabled=no dst-address=\
78.46.10.142 new-routing-mark=euractiv.rs passthrough=no src-address=\
192.168.1.0/24
add action=mark-routing chain=prerouting comment=\
"Oba sajta su na istoj IP adresi" disabled=no dst-address=78.46.5.12 \
new-routing-mark="betaoms.com i beta-video.tv" passthrough=no \
src-address=192.168.1.0/24
add action=mark-routing chain=prerouting comment="" disabled=no \
dst-address-list=FACEBOOK new-routing-mark=FACEBOOK passthrough=yes \
src-address=192.168.1.0/24
add action=mark-routing chain=prerouting comment="" disabled=no dst-address=\
0.0.0.0/0 new-routing-mark=BORIS passthrough=yes src-address=10.0.0.2
/ip firewall nat
add action=dst-nat chain=dstnat comment="" disabled=no dst-address=\
*.108.*.14 port=4902 protocol=tcp to-addresses=10.0.0.2 to-ports=4899
add action=dst-nat chain=dstnat comment="" disabled=no dst-address=\
*.148.*.145 port=4903 protocol=tcp to-addresses=10.0.0.2 to-ports=4899
add action=masquerade chain=srcnat comment="" disabled=no out-interface=\
"VERAT (eth4)" src-address=10.0.0.0/24
add action=masquerade chain=srcnat comment="" disabled=no out-interface=\
"SBB (eth2)" src-address=10.0.0.0/24
/ip firewall service-port
set ftp disabled=no ports=21
set tftp disabled=no ports=69
set irc disabled=no ports=6667
set h323 disabled=no
set sip disabled=no ports=5060,5061
set pptp disabled=no