I had port forwarding working to a server on my lan. I changed the server and ip addresses now I can’t get forwarding working again to the new server. Some forwarding rules work and others don’t. Specifically ones I set up for HTTP and SSH do not. The Verizon and OOMA work. What do I need to do to get this working again? Running 6.35 RouterOS
Here is my router setup. I changed the public IP addresses for the wan interface to 9.9.9.9 and the associated wan network to 1.1.1.1 for this posting..
[[user@whiteface] > /ip address print detail
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; default configuration
address=192.168.1.1/24 network=192.168.1.0 interface=port2-master-lan actual-interface=port2-master-lan
1 D address=9.9.9.9/32 network=1.1.1.1 interface=pppoe-wan actual-interface=pppoe-wan
[user@whiteface] > /ip route print detail
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit
0 ADS dst-address=0.0.0.0/0 gateway=1.1.1.1 gateway-status=1.1.1.1 reachable via pppoe-wan distance=1 scope=30 target-scope=10
1 ADC dst-address=1.1.1.1/32 pref-src=9.9.9.9 gateway=pppoe-wan gateway-status=pppoe-wan reachable distance=0 scope=10
2 ADC dst-address=192.168.1.0/24 pref-src=192.168.1.1 gateway=port2-master-lan gateway-status=port2-master-lan reachable distance=0 scope=10
user@whiteface] > /ip firewall filter print
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; default configuration
chain=input action=drop protocol=icmp in-interface=pppoe-wan log=no log-prefix=""
1 ;;; default configuration
chain=input action=accept connection-state=established,related log=no log-prefix=""
2 ;;; default configuration
chain=input action=drop in-interface=port1-wan log=no log-prefix=""
3 ;;; default configuration
chain=forward action=accept connection-state=established,related log=no log-prefix=""
4 ;;; default configuration
chain=forward action=drop connection-state=invalid log=no log-prefix=""
5 ;;; default configuration
chain=forward action=drop connection-state=new connection-nat-state=!dstnat in-interface=port1-wan log=no log-prefix=""
6 ;;; default configuration
chain=input action=drop protocol=icmp in-interface=pppoe-wan log=no log-prefix=""
7 ;;; default configuration
chain=input action=accept connection-state=established,related log=no log-prefix=""
8 ;;; default configuration
chain=input action=drop in-interface=port1-wan log=no log-prefix=""
9 ;;; default configuration
chain=forward action=accept connection-state=established,related log=no log-prefix=""
10 ;;; default configuration
chain=forward action=drop connection-state=invalid log=no log-prefix=""
11 ;;; default configuration
chain=forward action=drop connection-state=new connection-nat-state=!dstnat in-interface=port1-wan log=no log-prefix=""
[user@whiteface] > /ip firewall export
# apr/16/2016 08:07:33 by RouterOS 6.35
# software id = X5L2-J78L
#
/ip firewall filter
add action=drop chain=input comment="default configuration" in-interface=pppoe-wan protocol=icmp
add chain=input comment="default configuration" connection-state=established,related
add action=drop chain=input comment="default configuration" in-interface=port1-wan
add chain=forward comment="default configuration" connection-state=established,related
add action=drop chain=forward comment="default configuration" connection-state=invalid
add action=drop chain=forward comment="default configuration" connection-nat-state=!dstnat connection-state=new in-interface=port1-wan
add action=drop chain=input comment="default configuration" in-interface=pppoe-wan protocol=icmp
add chain=input comment="default configuration" connection-state=established,related
add action=drop chain=input comment="default configuration" in-interface=port1-wan
add chain=forward comment="default configuration" connection-state=established,related
add action=drop chain=forward comment="default configuration" connection-state=invalid
add action=drop chain=forward comment="default configuration" connection-nat-state=!dstnat connection-state=new in-interface=port1-wan
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" out-interface=pppoe-wan
add action=dst-nat chain=dstnat comment="Verizon DVR Service 0" dst-port=35000 in-interface=pppoe-wan protocol=tcp to-addresses=192.168.1.73 to-ports=9001
add action=dst-nat chain=dstnat comment="Verizon DVR Service 1" dst-port=35001 in-interface=pppoe-wan protocol=tcp to-addresses=192.168.1.73 to-ports=9001
add action=dst-nat chain=dstnat comment="Verizon DVR Service 2" dst-port=35002 in-interface=pppoe-wan protocol=tcp to-addresses=192.168.1.73 to-ports=9001
add action=dst-nat chain=dstnat comment="Verizon DVR Service 3" dst-port=35003 in-interface=pppoe-wan protocol=tcp to-addresses=192.168.1.73 to-ports=9001
add action=dst-nat chain=dstnat comment="Lubuntu Plex Server TCP" dst-port=32400 in-interface=pppoe-wan protocol=tcp to-addresses=192.168.1.40 to-ports=32400
add action=dst-nat chain=dstnat comment="Verizon Service Port" dst-port=4567 in-interface=pppoe-wan protocol=tcp to-addresses=192.168.1.73 to-ports=4567
add action=dst-nat chain=dstnat comment="Verizon Media Server UDP Port" dst-port=63145 in-interface=pppoe-wan protocol=udp to-addresses=192.168.1.100 to-ports=63145
add action=dst-nat chain=dstnat comment="Ooma udp port 53" dst-port=53 in-interface=pppoe-wan protocol=udp to-addresses=192.168.1.72 to-ports=53
add action=dst-nat chain=dstnat comment="Ooma UDP port 123" dst-port=123 in-interface=pppoe-wan protocol=udp to-addresses=192.168.1.72 to-ports=123
add action=dst-nat chain=dstnat comment="SmartOS Plex Server TCP" dst-port=42400 in-interface=pppoe-wan protocol=tcp to-addresses=192.168.1.43 to-ports=32400
add action=dst-nat chain=dstnat comment="http centweb1" dst-port=81 in-interface=pppoe-wan protocol=tcp to-addresses=192.168.1.22 to-ports=81
add action=dst-nat chain=dstnat comment="SSH Tunnel to Loveland" dst-port=8000 in-interface=pppoe-wan protocol=tcp to-addresses=192.168.1.30 to-ports=22