I am very new to RouterOS and have been going through the wiki and these forums for my information. I cant seem to sort this issue out, and it is a very basic issue so I suspect I am making a mistake.
I need to forward TCP port 9080 to an internal address 192.168.88.253, as well as UDP ports 9081-9083 to the same.
I am using WebFig v6.0rc4.
In firewall - NAT I have set up both rules with the following;
Chain-dstnat
dst.address - Routers external IP
protocol - 6(TCP) for one and 17(UDP) for the other
dstport - 9080 for one and 9081-9083 for the other
action - dst-nat
to address - 192.168.88.253
to ports - 9080
I have two questions.
The first is that when I try to connect I can see the packet arrive at the router, however it never connects. Is there a mistake in my above configuration? I am able to connect locally without issue so I suspect my problem lies with my experience with the firewall settings.
Second, I use a ddns service which I have generated a script to update from the router. (Sidebar - do you know if I can schedule this script to run? I copied the 5x version here http://wiki.mikrotik.com/wiki/Dynamic_DNS_Update_Script_for_dynDNS and it updates fine, when I manually execute the script.) If I entered the routers external IP address in dst. address wont I have to manually configure that whenever I get e new lease from my ISP? I tried putting 192.168.88.1 in this field and I dont even see the packet arrive at the router.
I really appreciate any assistance you can provide.
I figured this out. It is working with those settings and I was having problems with the connection to an external network.
The only question that remains are these;
“Second, I use a ddns service which I have generated a script to update from the router. (Sidebar - do you know if I can schedule this script to run? I copied the 5x version here http://wiki.mikrotik.com/wiki/Dynamic_D … for_dynDNS and it updates fine, when I manually execute the script.) If I entered the routers external IP address in dst. address wont I have to manually configure that whenever I get e new lease from my ISP? I tried putting 192.168.88.1 in this field and I dont even see the packet arrive at the router.”
I changed the ds-nat rule and it worked flawlessly!
I have also set up a schedule which should execute some time tomorrow for the first time. If someone sees this before then, the WIKI stated;
“on-event(name) - name of the script to execute. It must be presented at /system script”
Does that only mean I enter the name of the script in the ON EVENT field of the WebFig, and that it is indicating that the name of that script must be present?
Please can post how to do the port forward as I have the same problem, I try before that can reach in the home network but can’t reach over the internet ! Thanks !