port forwarding on router.. port 80 and others..

ttrance · December 25, 2014, 10:19am

Hey Everyone!

This will be my third post now within 1 hour… Need to figure out how to set this up… Workers here at the office need to access certain things but currently its generally not working. For some reason one guy out of everyone is able to access the local VMware machine, no idea how its possible!

I researched a bit and see there is firewall rules, and then Nat rules. Not sure what to do. I tried setting up a Nat rule for port 80, but then instantly no one could access any website - so I immediately disabled that rule! Whoops!

Local IP Address
Start Port
End Port
External IP Address
Start Port
End Port
Protocol
Description

192.168.100.13
3389
3389
(our static public IP)
3389
3389
BOTH
RDC

192.168.100.13
448
448
(our static public IP)
448
448
BOTH
VM ware

192.168.100.13
80
80
(our static public IP)
80
80
BOTH
webserver

192.168.100.13
443
443
(our static public IP)
443
443
BOTH
ssl webserver

192.168.100.13
902
903
(our static public IP)
902
903
BOTH
vmware

gotsprings · December 27, 2014, 11:25pm

Change the 1.1.1.1 to your (our static public IP). This will work from the outside assuming that your firewall filter rules allow it.

/ip firewall nat
add action=dst-nat chain=dstnat comment=\
    "RDC, VM ware, Webserver, ssl webserver, VM ware-VM ware" dst-address=\
    1.1.1.1 dst-port=3389,448,80,443,902,903 protocol=tcp to-addresses=\
    192.168.100.13
add action=dst-nat chain=dstnat comment=\
    "RDC, VM ware, Webserver, ssl webserver, VM ware-VM ware" dst-address=\
    1.1.1.1 dst-port=3389,448,80,443,902,903 protocol=udp to-addresses=\
    192.168.100.13

ttrance · December 28, 2014, 6:41am

wow thanks perfect! Will try it out when I get to the office in an hour