I have a MikroTik hAP ac lite (RB951). I do not have a static ip address from my ISP, so my WAN ip address changes periodically. Also, I have a domain (xxxxx.link) that is hosted by Cloudflare. And I have an app running that automatically updates cloudflare everytime my external ip address changes.
I access my home network by using that domain. I want to set up port forwarding to access various devices at my home (such as cameras) by port forwarding the domain to specific ports. How do I do that?
I am not currently running any local DNS on the RB951.
You need reverse proxy in TCP mode to do this, you can put haproxy or nginx as reverse proxy in a container inside the TIK or you can do it outside your router and make port forwarding
The RB951 does not support containers, but running the Cloudflare container be best way to get traffic to the Mikrotik.
You can create a dst-nat in /ip/firewall for the port to enable port forwarding. Since the FQDN point’s the router IP, that’s all that’s technically needed. Your relaying on the security of the NVR/etc with just port forwarding.
@AE8U, try to avoid exposing your internal network devices with open ports whenever possible. Instead, consider using VPN like WireGuard or ZeroTier. MikroTik has a built-in DDNS feature for handling dynamic IP changes called IP Cloud.