I am having issue with port forwarding. I have a Mikrotik RB951 which has a static public ip from ISP, the router is connected to a cisco switch. with the switch I have two DVR, one tplink AP, and 3 nanostations connected to it with LAN ip being: 192.168.100.0/24. I am trying to port forward cofiguration webpages of these devices so that I can access them remotely via the public IP.
I have configured them in the following way:
0 ;;; default configuration
chain=srcnat action=masquerade out-interface=ether1-WAN log=no
log-prefix=""
1 ;;; DVR-2
chain=dstnat action=dst-nat to-addresses=192.168.100.117 to-ports=80
protocol=tcp in-interface=ether1-WAN dst-port=888 log=no log-prefix=""
2 ;;; DVR-1
chain=dstnat action=dst-nat to-addresses=192.168.100.116 to-ports=80
protocol=tcp in-interface=ether1-WAN dst-port=777 log=no log-prefix=""
3 ;;; nanostationM2_link3
chain=dstnat action=dst-nat to-addresses=192.168.100.123 to-ports=80
protocol=tcp in-interface=ether1-WAN dst-port=1094 log=no log-prefix=""
4 ;;; Nano_ptp_b1
chain=dstnat action=dst-nat to-addresses=192.168.100.251 to-ports=80
protocol=tcp in-interface=ether1-WAN dst-port=1096 log=no log-prefix=""
5 ;;; Nano_ptp_a1
chain=dstnat action=dst-nat to-addresses=192.168.100.250 to-ports=80
protocol=tcp in-interface=ether1-WAN dst-port=1097 log=no log-prefix=""
6 ;;; tplink_ap_link3
chain=dstnat action=dst-nat to-addresses=192.168.100.122 to-ports=80
protocol=tcp in-interface=ether1-WAN dst-port=1099 log=no log-prefix=""
==============================================================================
Rule 3 and 6 are working. I can access these two devices remotely via the public ip and the specified port. But the rest of them are not working even though all the parameters are exact.
What is even more weird is that, even though those port forwards are not working and i cant access them remotely, hitting those ports remotely with the public ip is generating traffic against those rules. can anyone help?
thanks in advance!