Can someone please indicate to me how to get Passive FTP working on 5.6
I have a public IP with port 20, 21 NAT to 10.10.10.11 which is openfiler 2.99
When on 10.10.10.0/24 network, ftp works fine.
When on the outside internet, cannot connect to FTP server…
Openfiler passive port are 55535-65534
Can someone tell me how to configure the Mikrotik to make this work please?
With this, I also need to masquerade the outbound with a specific Public IP, is that possible? If so how?
try this, this is what i use in my ftp session.
add action=accept chain=forward comment=FTP disabled=no dst-port=20,21 protocol=tcp
add action=accept chain=forward comment=“” connection-state=established disabled=yes
add action=accept chain=forward comment=“” connection-state=related disabled=yes
my problem is I have multiple Public IP’s on this router, and I only want ftp on a specific Public IP…
I tried doing dst-nat for 208.100.100.225 port 20-21 to 10.10.10.11 but that does not work…
I confirmed that from within 10.10.10.0 network, ftp work fine to 10.10.10.11
But cannot get it to work from outside Public Internet
can anyone help?
anyone?
/ip firewall nat
add action=dst-nat chain=dstnat comment="FTP server - command" disabled=no dst-address=your_public_IP dst-port=21 in-interface=your_WAN_interface protocol=tcp to-addresses=10.10.10.11 to-ports=21
add action=dst-nat chain=dstnat comment="FTP server - data" disabled=no dst-address=your_public_IP dst-port=55535-65534 in-interface=your_WAN_interface protocol=tcp to-addresses=10.10.10.11 to-ports=55535-65534
Also you should read Wiki about NAT
http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/NAT
HTH,
Thanks, It’s worked for me