Hi all.

so i have had a new router-board sxt installed. Wan - pppoe -internal LAN. I’m using a linksys router as a switch for the moment. This is working fine now. the router board is handing out Ip’s to the Xbox and my desktop.

So i need to open all the ports on the sxt as this connection is for my Xbox only. I have tried adding the dst chain for tcp and udp 0-65000 (from the wiki) but it wont work (well I’m not doing it right) but I think because there is a Nat rule already in place using ip masquerading on pppoe, scrNat.

What am i doing wrong???

Bob

Hi

in terminal do a:

/ip firewall nat export

and place output here

add action=masquerade chain=srcnat disabled=no out-interface=pppoe-out1

There ya go

and where are DST-NAT rules ?

I removed them as I could not get them to work. I am looking for the correct way to do.it

/ip firewall nat
add action=masquerade chain=srcnat disabled=no out-interface=pppoe-out1

add action=add-dst-to-address-list address-list=192.169.100.96
address-list-timeout=0s chain=dstnat disabled=no dst-address=149.5.xx.x
dst-port=0-65000 in-interface=wlan1 port=0-65000 protocol=tcp

add action=add-dst-to-address-list address-list=192.168.100.96
address-list-timeout=0s chain=dstnat disabled=no dst-address=149.5.xx.x
dst-port=0-65000 in-interface=wlan1 port=0-65000 protocol=udp


This is what I am trying to use,

Anyone?

I think what you need to nat your public IP to your Xbox or some specific ports.
try to search in XBOX LAN game guide to find requirement, then you can do the configurations in Mikrotik.

Yeah, i know the ports, but the connection is for the Xbox only so its just as easy to open up all the ports.

I am not sure of exactly what to nat to what, hence I’m asking here

I don’t know anything about XBOX cause I don’t have it, but check what kind of network configuration does it have(IP address, Subnet mask, Default Gateway ,…). Then tell us about them. may give solution.
By default all ports in Mikrotik are open, I think.

The Xbox just gets a Ip from the router (SXT) including sub-net and gateway. Its a direct connection from the SXT router to the Xbox, nothing in between.

ports are
Port 88 (UDP)
Port 3074 (UDP and TCP)
Port 53 (UDP and TCP)
Port 80 (TCP)

Maybe it is the solution

ip firewall nat add chain=dstnat dst-address=x.x.x.x action=dst-nat to-addresses=y.y.y.y

x.x.x.x= Public IP of router
y.y.y.y=XBOX IP address

It will nat all incoming packets to XBOX IP address

Ok i’ll give it a go. Thanks

You can also try UPnP in Mikrotik too

http://wiki.mikrotik.com/wiki/Manual:IP/UPnP

Ok, i will try that as well,

just one last thing. In all the examples on the wiki. They have Ether1 and wlan. I have 3 interfaces, Wlan ether1 and PPPoe.

I assume i just replace wlan with PPPOE, as that seems to be my OUTSIDE interface.

Thanks again,


Bob

correct.

That makes sense now.

The pppoe ip address is not however my externa/publicl ip, dose this matter?

How do you get Public IP from yur ISP? Did your ISP assign you private IP and then NAT you and some other people to one Public IP ?
It is important whenever you use public IP as dst-address in NAT rule.

I have a static ip from my ISP. no nat as far as i know

ADDRESS NETWORK INTERFACE

0 192.168.100.254/24 192.168.100.0 ether1
1 X 149.5.xx.x/32 149.5.xx.x wlan1
2 D 192.168.201.110/32 192.168.200.254 pppoe-out1

here is the address table if this helps