Hello, I have a problem with setting up my RB532A (mipsle) for our company security camera system.
The setup is shown on image. I have eth2 and eth3 in bridge.
The security network doesn’t use DHCP so the bridge has static IP (192.168.1.150), PC is 192.168.1.2 and the main recording device with web interface is 192.168.1.200. The rest of security network is just IP cameras. Right now, the connection from PC to main recording device is working well and there is no problems with communication inside the security network. The recording device web interface runs on standart http port 80.
Interface eth1 has it’s addres assigned from main company DHCP server (address is staticly assigned for this microtic on DHCP server so it won’t change). IP address of eth1 is 10.198.21.153.
I need to connect to main recording device that is placed in security network from our company network. I have setup dst-nat like this:
ip firewall nat> add action=accept chain=dstnat dst-port=8291 protocol=tcp
ip firewall nat> add action=dst-nat chain=dstnat dst-address=10.198.21.153 to-addresses=192.168.1.200
But it doesn’t work - i get connection timeout. I tried to specify the port for the rule (dst-port and to-port) to value 80 but it didn’t help either.
ip firewall nat> add action=dst-nat chain=dstnat dst-port=80 dst-address=10.198.21.153 to-port=80 to-addresses=192.168.1.200
Any suggestions what could be wrong?