Hello bro
would you mind help to solve my problem
i think my concept is wrong,can you help to correct it.
0 ;;; Router(internet connect to router)
chain=dstnat action=dst-nat to-addresses=192.168.1.1 protocol=tcp dst-address-type=“” dst-port=8728,8729,8291,80
log=no log-prefix=“”
1 ;;;(internet connect to nas)
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=8080 protocol=tcp dst-address=!192.168.1.1
dst-address-type=local dst-port=8080 log=no log-prefix=“”
2 ;;; DMZ(192.168.1.18 is DMZ)
chain=dstnat action=dst-nat to-addresses=192.168.1.18 in-interface-list=WAN log=no log-prefix=“”
3 ;;; NAT (Loopback)
chain=srcnat action=masquerade src-address=192.168.1.0/24 log=no log-prefix=“”
4 ;;; NAT
chain=srcnat action=masquerade out-interface=ether1 log=no log-prefix=“”
kujo
2
You don’t need make dstnat to router service ports. Dst-address-type=“” - this’s incorrect in first rule…
Yours respectfully!
thank kujo Bro
but i deleted the zero record port…i cannot connect to internet…now i need disable the zero record…
0 X ;;; Router(internet connect to router)
chain=dstnat action=dst-nat to-addresses=192.168.1.1 protocol=tcp log=no log-prefix=“”
1 ;;; NAS(internet connect to NAS)
chain=dstnat action=dst-nat to-addresses=192.168.1.100 to-ports=8080 protocol=tcp dst-address=!192.168.1.1
dst-address-type=local dst-port=8080 log=no log-prefix=“”
2 ;;; DMZ
chain=dstnat action=dst-nat to-addresses=192.168.1.18 in-interface-list=WAN log=no log-prefix=“”
3 ;;; NAT(Loopback)
chain=srcnat action=masquerade src-address=192.168.1.0/24 log=no log-prefix=“”
4 ;;; NAT
chain=srcnat action=masquerade out-interface=ether1 log=no log-prefix=“”
kujo
4
Can you targeting your problem?
Yours respectfully!