Good day everyone
The last time I was on here was probably about 2 years ago and you guys sorted out my problem in not time at all. I really hope you can help me again.
I am exposing a service on an internal LAN computer of mine with IP address 192.168.88.47 and the service running on port 5000
My mikrotik router has IP address 192.168.88.1
My mikrotik router is connected to my ISPs mikrotik router which has an IP address of 192.168.8.1 (They said they opened up port forwarding on their side to port 5000 but I really start to doubt it now…I also set up a firewall rule to look specifically for internet traffic to my port 5000 but nothing)
For testing purposes, I removed all firewall rules that could potentially block anything (so just a bunch of accept rules; I will sort this out after I get the DSTNAT to work)
I have the following NAT rules:
1.) Action=masquerade, chain=masquerade, out interface=ether1-gateway
2.) action=dst-nat, chain=dst-nat, protocol=tcp, dst-port=5000, in-interface=bridge-local,to-ip-address=192.168.88.47,to-port=5000
3.) chain=src-nat, action=masquerade, src-address=192.168.88.0/24, dst-address=192.168.88.47, protocol=tcp, dst-port=5000,out-interface=bridge-local
When I try to connect to my service (using my public IP) it works just fine (all 3 rules above has packets incoming). When I try and connect to my service from my phone (on 4G, not my LAN) then nothing happens; none of the nat rules are hit.
I am pretty sure the above is correct, and if you guys agree, then it is back to the ISP.
Thanks!
Leigh