Hello,
I am trying to setup port forwarding from port 3390 on my router to port 3389 on a computer on my local network.
Here is my “/ip address print detail”:
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; default configuration
address=192.168.88.1/24 network=192.168.88.0 interface=wlan1
actual-interface=bridge-local
1 address=10.0.0.200/24 network=10.0.0.0 interface=ether1-gateway
actual-interface=ether1-gateway
Here is my “/ip route print detail”:
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
0 A S dst-address=0.0.0.0/0 gateway=10.0.0.138
gateway-status=10.0.0.138 reachable via ether1-gateway
scope=30 target-scope=10
1 ADC dst-address=10.0.0.0/24 pref-src=10.0.0.200 gateway=ethe
gateway-status=ether1-gateway reachable distance=0 scope
2 ADC dst-address=192.168.88.0/24 pref-src=192.168.88.1 gatewa
gateway-status=bridge-local reachable distance=0 scope=1
Here is my “/interface print detail”:
Flags: D - dynamic, X - disabled, R - running, S - slave
0 R name="ether1-gateway" default-name="ether1" type="ether" mtu=1500 actual-mtu=1500 l2mtu=1598
max-l2mtu=4074 mac-address=D4:CA:6D:19:37:0C fast-path=yes last-link-up-time=mar/29/2015 00:08:
link-downs=0
1 S name="ether2-master-local" default-name="ether2" type="ether" mtu=1500 actual-mtu=1500 l2mtu=15
max-l2mtu=4074 mac-address=D4:CA:6D:19:37:0D fast-path=yes link-downs=0
2 S name="ether3-slave-local" default-name="ether3" type="ether" mtu=1500 actual-mtu=1500 l2mtu=159
max-l2mtu=4074 mac-address=D4:CA:6D:19:37:0E fast-path=yes link-downs=0
3 S name="ether4-slave-local" default-name="ether4" type="ether" mtu=1500 actual-mtu=1500 l2mtu=159
max-l2mtu=4074 mac-address=D4:CA:6D:19:37:0F fast-path=yes link-downs=0
4 S name="ether5-slave-local" default-name="ether5" type="ether" mtu=1500 actual-mtu=1500 l2mtu=159
max-l2mtu=4074 mac-address=D4:CA:6D:19:37:10 fast-path=yes link-downs=0
5 RS name="wlan1" default-name="wlan1" type="wlan" mtu=1500 actual-mtu=1500 l2mtu=2290
mac-address=D4:CA:6D:19:37:11 fast-path=no last-link-up-time=mar/29/2015 00:09:13 link-downs=0
6 R name="bridge-local" type="bridge" mtu=1500 actual-mtu=1500 l2mtu=1598 mac-address=D4:CA:6D:19:3
fast-path=no last-link-up-time=mar/29/2015 00:08:51 link-downs=0
Here is my “/ip firewall export”:
# mar/29/2015 01:53:31 by RouterOS 6.27
# software id = FH08-Y9B0
#
/ip firewall filter
add action=drop chain=input comment="Invalid connections" connection-state=invalid
add chain=input comment="Established Connections" connection-state=established
add chain=input comment="Related Connections" connection-state=related
add chain=input comment="Router Network" in-interface=!ether1-gateway src-address=192.168.88.0/24
add chain=input comment="Remote Desktop Test" dst-address=10.0.0.200 dst-port=3390 in-interface=ether1-gateway protocol=\
tcp
add chain=input comment="Remote Desktop" dst-address=10.0.0.200 dst-port=3389 in-interface=ether1-gateway protocol=tcp
add chain=input comment=Ping protocol=icmp
add action=drop chain=input comment="Drop Rest"
add chain=forward comment="Established Connections" connection-state=established
add chain=forward comment="Related Connections" connection-state=related
add action=drop chain=forward comment="Invalid Connections" connection-state=invalid
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" out-interface=ether1-gateway
add action=dst-nat chain=dstnat comment="Remote Desktop Test" dst-address=10.0.0.200 dst-port=3390 protocol=tcp \
to-addresses=192.168.88.200 to-ports=3389
add action=dst-nat chain=dstnat comment="Remote Desktop" dst-address=10.0.0.200 dst-port=3389 protocol=tcp to-addresses=\
192.168.88.200 to-ports=3389
As you can see, I have two port forwarding rules. While forwarding 3389 → 3389 works, the second rule 3390 → 3389 does not.
Could anyone please explain to me, what am I doing wrong?
Thanks
