Hi all,
I am attempting to port forward HTTPS traffic for a web server running on my local machine, but for some reason, my current rules cause the internet connection to completely die for all devices on the network.
My config is attached
myconfig.rsc (3.13 KB)
/ip firewall nat
add action=masquerade chain=srcnat comment=“defconf: masquerade”
out-interface-list=WAN
add action=dst-nat chain=dstnat disabled=yes dst-port=443 protocol=udp
to-addresses=192.168.88.17 to-ports=443
add action=dst-nat chain=dstnat disabled=yes dst-port=443 protocol=tcp
to-addresses=192.168.88.17 to-ports=443
First, the destination nat rules fail to include the in-interface-list=WAN or in-interface=pppoe-out1
However you have not made it clear if you are making internal users use the server and if so how… by LANIP or domain name.
If by domain name you are running into hairpin NAT.
In any case read this → https://forum.mikrotik.com/viewtopic.php?t=179343