So if nobody gives you support about how to eat, you'll probably finish not eating at all.there isn't support at all so why should we use mikrotik ??
So if nobody gives you support about how to eat, you'll probably finish not eating at all.there isn't support at all so why should we use mikrotik ??
And in your case, where is needed support from mikrotik users since you are trying
to connect ubnt devices. You're description is pretty vague and nowhere there I read about
a mikrotik device.
Also http://www.mikrotik.com/mfm
by your description i do not understand what is the connection between the router you are using, networks you are using and one 3rd party device where you want some configuration that is unrelated to the RouterOS or RouteBOARD.
draw an network schema and check what is you want to do. Check out some documentation of the products you use, maybe answer is already there.
this is in the mikrotik manual I did everything correct but it doesn't forward me to the ip I wanted im writing it in detailsAdd rule allowing access to the internal server from external networks:
/ip firewall nat add chain=dstnat dst-address=10.5.8.200 action=dst-nat \
to-addresses=192.168.0.109
/ip firewall nat
add chain=dstnat action=dst-nat to-addresses=192.168.88.x to-ports=80 protocol=tcp
dst-address=31.209.110.x dst-port=8888
for NAT to work you should have a rule like this:So if you send a request to IP=31.209.110.x to port=8888, you should be able to accessCode: Select all/ip firewall nat add chain=dstnat action=dst-nat to-addresses=192.168.88.x to-ports=80 protocol=tcp dst-address=31.209.110.x dst-port=8888
your internat IP=192.168.88.x on port=80
As for the attacks from outside, have a look at these filters rules:
http://wiki.mikrotik.com/wiki/Bruteforc ... prevention
are you completely sure about your statement?the dst nat it doesnt work
can youpost your masquerade rule?
I have seen cases when the masquerade rule would interfere with nat rules.
If your masquerade rule has out-interface specified, try to leave it blank.
Yes, I have seen a couple of NAT rules which were not working when out-interfaceare you completely sure about your statement?
From what I can understand (and it is quite difficult from your posts ) you are trying to access SecurityCAM behind a Router (NanoBridge M5).
And in earlier posts you mentioned that you use NanoBridge in Router MODE .. So NAT is enabled on NanoBridge I presume.
From Public IP you can get to NanoBridge (192.168.1.72)? If yes then You have enable PORT FORWARD on the NanoBridge to the Security Camera
Why is your Mikrotik on LAN site in network 192.168.88.x/24 and sectors and NanoBridges in 192.168.1.x/24 ??
It looks like a misconfiguration... but if it works for you ok
I would do it like this:
PublicIP:8888 -> DST-NAT to 192.168.1.72:8888 (NanoBridge) -> DST-NAT - 192.168.254.100:80
/ip firewall nat add chain=dstnat action=dst-nat to-addresses=192.168.88.102 to-ports=8888 protocol=tcp dst-address="YOUR PUBLIC WAN IP" dst-port=8888
/ip firewall nat add chain=dstnat action=dst-nat to-addresses=192.168.88.102 to-ports=8282 protocol=tcp dst-address=31.209.110.x dst-port=8282