1426/5000
Hi, I have the following issue;
I have a Mikrotik ruter, an exposed interface (ether1) to internet with public and static ip, let’s say 180.15.15.82/29, the domain xdom.com resuleve to that ip.
Another interface (ether2) where the Lan is, in the range 192.168.1.0/24.
Within the LAN I have a web server and other services, let’s say that the server is in the ip 192.168.1.16; which I can access from the internet (I mean by pointing to xdom.com or ip 180.15.15.82) since I am forwarding the connections (in NAT table chain dstnat, action dst-nat; to: 192.168.1.16: 443).
Now, I need to access the services of 192.168.1.16, from inside the lan (that is, from the ip’s 192.168.1.0/24) but requesting the services referencing the domain: xdom.com
Example: From the 192.168.1.30 client I request the browser to connect to the site hosted at https://xdom.com (at this moment the browser replies that the site could not connect) but if I point to https: //192.168. 1.16 the connection is established, with the inconvenience of having to add an exception in the browser since the certificate for xdom.com is not recognized.
What I’m looking for is a firewall rule that allows me to use the services of the internal server by calling it by its domain name xdom.com and that the certificate is accepted and works!
This is possible?
Thank you very much and excuse me if it is not the place for it.