I’m trying to replace a Cisco PIX with a Routerboard 532a using Level-5 RouterOS. I have everything working except servers that on private IPs that resolve through my ISPs DNS to a public IP. The ALIAS command worked great in the PIX, how do I duplicate that with RouterOS ?
If memory serves me right, dst-nat
alias publicIP privateIP (or something to that affect) in the pix right?
Correct, “alias (inside-interface-name) private-IP public-IP subnet-mask”.
I’ve tried dst-nat but it’s just not working. Most likely it’s so simple I’m overlooking something obvious.
ip firewall nat add action=dst-nat chain=dstnat dst-address=public_address to-addresses=local_address, for dstnat.
ip firewall nat add action=src-nat chain=srcnat src-address=local_address to-addresses=public_address, for srcnat.