Hi everybody, I finally got one of those pieces in my hand. Company I work for bought Mikrotik RB2011UiAS-2HnD model.
I never configure MT before (I always did CISCO) but tried to do it now. I managed to set up WiFi, dual WAN interfaces, NAT and DMZ. Also configured two WLANs one for internal use and other as HotSpot for guests. Also separate guest WLAN from internal pool without any issue. But I have two problems.
Network is consisted from 2 WAN links. One is ADSL and other is FiberOptic. ADSL is not here yet but I reserved interface WAN1 for it. And interface WAN2 is for Fiber. Link WAN1 should be primary for everything except for traffic I set in mangle rules and that traffic should go through WAN2 or DMZ
Problem 1: I can get online from inside and can forward port from outside as it should. BUT. I cannot get access from outside to configure router from winbox or telnet or ssh. I also set pptp vpn on WAN2 link but cannot access to it. I tried to ping port 1723 from outside but it is not open.
Problem 2: I have 15 public addresses 212.200.x.x from mu ISP (alongside with WAN2 fiber optic link) but when I connect server directly on DMZ interface and give to it public IP I can go to Internet but I cannot access from outside for example to web server on port 80 tcp. I tried with firewall rules but no luck. I will try different approach with NAT as described here but I think that here is something else problem.
I attached config here. Does anybody have any idea?
config.txt (8.19 KB)