Hello,
I have RB750G installed and running. I bridged my adsl modem.
I have masqueraded srcnat my internal network.
I can’t port forward to my internal network. I read a lot of documents all of them says the same thing. Just dstnat port to internal network.
I think i have another configuration problem.
What can it be?
Hello again,
I found that i can forward port 80
but i can’t forward port 3306 for mysql 
i don’t know why i can’t
currently my mysql server is running at port 80. and i need to configure it to run at port 3306.
anyone can help me?
Post the relevant parts of your configuration. Without seeing it anyone would just be guessing.
check your filter fules at first
hello,
thanks for your replies. my firewall configuration is below.
/ip firewall connection tracking
set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \
tcp-close-wait-timeout=10s tcp-established-timeout=1d \
tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no \
tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
/ip firewall filter
add action=accept chain=output comment="" disabled=no protocol=tcp src-port=\
1723
add action=accept chain=input comment="" disabled=no protocol=gre
add action=accept chain=output comment="" disabled=no protocol=tcp src-port=\
587
add action=accept chain=output comment="" disabled=no protocol=tcp src-port=\
25
add action=accept chain=output comment="" disabled=no protocol=tcp src-port=\
110
add action=accept chain=forward comment="" disabled=no
add action=accept chain=input comment="" disabled=no protocol=tcp src-port=\
110
add action=accept chain=input comment="" disabled=no protocol=tcp src-port=25
add action=accept chain=output comment="" disabled=no protocol=tcp src-port=\
143
add action=accept chain=output comment="" disabled=no
add action=drop chain=input comment="" disabled=no dst-port=22 protocol=tcp
add action=accept chain=input comment="" disabled=no dst-address=\
78.189.184.177 dst-port=80 protocol=tcp
/ip firewall nat
add action=masquerade chain=srcnat comment="" disabled=yes src-address=\
20.0.0.0/24
add action=dst-nat chain=dstnat comment="" disabled=no dst-address=\
78.189.184.177 dst-port=80 protocol=tcp src-address=212.68.63.16 \
to-addresses=192.168.88.10 to-ports=3306
add action=masquerade chain=srcnat comment="" disabled=no src-address=\
192.168.88.0/24
add action=accept chain=srcnat comment="" disabled=yes dst-address=\
192.168.88.10 dst-port=5060 protocol=tcp
/ip firewall service-port
set ftp disabled=no ports=21
set tftp disabled=no ports=69
set irc disabled=no ports=6667
set h323 disabled=no
set sip disabled=no ports=5060,5061
set pptp disabled=no
and, as soon as you change
add action=dst-nat chain=dstnat comment="" disabled=no dst-address=\
78.189.184.177 dst-port=80 protocol=tcp src-address=212.68.63.16 \
to-addresses=192.168.88.10 to-ports=3306
to
add action=dst-nat chain=dstnat comment="" disabled=no dst-address=\
78.189.184.177 dst-port=3306 protocol=tcp src-address=212.68.63.16 \
to-addresses=192.168.88.10
access is not working? does the new rule count packets? run sniffer - do you see SYN packets at all? maybe your ISP blocks that port for some reason…
my entry was for port 3306. but it doesn’t work. i changed it to port 80 outside and forward it to local servers port 3306.
as i know, my isp doesn’t block port 3306. (it blocks only port 25 for spam!!!)
when it is port 3306 counts 0 packets… now i tried another port and it works.
i google’d and searched if my isp blocks port 3306 i found nothing…
now i’m running on another port. (i thought that port 80 is open for web server or something else and i’m blocking port 3306 somewhere else. but i saw i’m not.)
thanks for your replies.