I’m trying to dst-nat traffic from the router, like this:
chain=dstnat action=dst-nat to-ports=54 protocol=udp
dst-address=10.0.0.1 dst-port=53
Then, I put 10.0.0.1 into the DNS server field on the Mikrotik. However, when I do something to cause a DNS lookup (like ping google.com), it times out and the counter on the NAT rule never increases. If I use an external address in the DNS server field (like 8.8.8.
it looks up DNS properly.
All my NAT rules for external traffic work fine … but how do you get it to work for traffic from the router itself?
Or … does the DNS server itself on the Mikrotik run OUTSIDE of the NAT where outgoing DNS requests from the router itself will never go through NAT?
By the way, my end goal here is to use an external DNS server that listens on port 54 instead of 53.