Firewall Rules - Access blocked after successful connection

BretLark · March 28, 2015, 8:56am

Hi all,

Thanks for accepting me into the community. I am a Linux novice and although I have used the RB951 for nearly 2 years I’m afraid I do still use Winbox for configuration as my SSH skills are far from perfect!

I have a strange problem that I haven’t seen before. My firewall rules are all working and I use the RB951 on our large scale solar farms to connect our monitoring systems to the satellite broadband on site. We use a number of data loggers which communicate with a web portal.

I have firewall rules to access port 80 of the data loggers for configuration and basically use xxx.xxx.xxx.xxx:8021 to 192.168.1.101:80

The rule works fine and I can browse to the device and login, however, when attempting to browse to any of the data logger menus I just get a “Page could not be displayed” and then I can no longer access the data logger, even with a reboot of the RB951. Could there be some dynamic port changing going on behind the scenes that is denying access?

Many thanks in advance,

Bret

BretLark · April 13, 2015, 9:52pm

Hi,

Does anyone have any ideas regarding this problem? It is still an issue. Mikrotik support maybe?

Thanks,

Bret

ZeroByte · April 13, 2015, 11:50pm

It sounds to me like the device’s page has hard-coded IP addressing in the links.
Mouse-over a link and watch what the URL is before clicking on it.

The only way around that is going to be unique addressing everywhere, and no-nat VPN into each site.

Do the devices have snmp support?

bkuhn · April 14, 2015, 5:41pm

What about setting up a VPN server on the MikroTik? Then you could be on the local network remotely.

deanMKD1 · April 14, 2015, 9:59pm

Use MikroTIk VPN to access your mikrotik. Then only NAT-ing the port (avoid to set port 80 as internal port) and will be ok.