My network have rule - what is not permitted is forbidden. So when i try configure NAT using RDP from internet i get closed ports.
I add rule to firewall accept all incoming packets for port 3389 (changed by NAT from 33389 before processing through firewall), but also have
closed port. So i add second rule to firewall - pasthrough all packets from local network to internet from port 3389, and only after this i see open port 33389. This is my config:
Code: Select all
/ip fi fi
add action=accept chain=forward comment=\
"Allow incoming RDP connections from internet for RDPUSERS" disabled=no \
dst-port=3389 protocol=tcp src-address-list=RDPUSERS
add action=accept chain=forward comment=\
"Allow outgoing RDP packets from local net" disabled=no protocol=tcp \
src-port=3389
/ip fi nat
add action=dst-nat chain=dstnat comment="RDP 192.168.1.55" disabled=no \
dst-address=176.192.8.74 dst-port=33389 protocol=tcp src-address-list=\
RDPUSERS to-addresses=192.168.1.55 to-ports=3389