Before I explain my problem, forgive me for not understanding how to do this. I’m a software developer, not a network engineer.
So I have a wireless internet connection and the router provided by my ISP apparently runs RouterOS. I think it’s a Ubiquiti router of some sort. Attached to this, I have my main wireless router, a Engenius ESR9850. And then attached to that (in repeater mode) is another Engenius ESR9850 that has a wired connection to a camera system. This camera system has a web interface that I have set to use port 1024 and it has a media port of 9000. My end goal is to be able to view this camera over the internet. I can successfully view it on the internal network from a connection to the main 9850.
My first attempt was to follow the camera manufacturer suggestions to port forward on my router. I did that to the main 9850 with no luck. Then I figured I was probably going to have to port forward from the Ubiquiti router to my master 9850 and then from that to the camera system. So I think I need to forward twice. However, I’m not having much luck even forwarding once.
Everything I read seems to suggest I need to go to the firewall nat section in winbox and add a dstnat entry. I thought for a first step, I would try to forward port 1024 to port 80 of the 9850 (Engenius web config). The internal IP of the Ubiquiti is 192.168.153.1 and the 9850 is 192.168.153.197. I tested with a web based open port checking tool and here’s what I found:
dst address set to my public IP, protocol tcp, dst. port 1024. Action is dst-nat, to address is 192.168.153.197, and to ports is set to 80. This didn’t work.
dst address set to my public IP, protocol tcp, dst. port 1024. Action is dst-nat, to address is 192.168.153.1, and to ports is set to 80. This successfully forwarded to the Ubiquiti RouterOS login screen.
So my next thought was to use the ping tool in winbox and ping 192.168.153.197. I get no response, but I do get response from 192.168.153.1. Doesn’t that seem odd?
In case it matters, the only existing nat rule was a srcnat with Out. Interface of PPPoE and action of masquerade.
Maybe I’m doing something totally completely wrong here, but I don’t understand what it would be. I know networking just isn’t my thing. Thanks for any assistance.