Hello,
I have a simple problem.
I have a web server in my internal network (let’s say IP 192.168.2.2) which is using https (443). I want to make my web server public. The problem is that if I port forward port 443 tcp to my web server, the other computers in my internal network can’t access other public pages which use https connections, like facebook or gmail. I think the problem is that the router forwards all https traffic to my internal web server. How could I fix that?
Thanks!
Hi, use following format of dstnat
/ip firewall nat
add action=dst-nat chain=dstnat dst-address=123.123.123.123 dst-port=443 \
protocol=tcp to-addresses=192.168.2.2 to-ports=443
/ip firewall nat
add action=dst-nat chain=dstnat dst-address=123.123.123.123 dst-port=443 \
protocol=tcp to-addresses=192.168.2.2 to-ports=443
[/quote]
Replace 123.123.123.123 with public ip of router
Hmm that wouldn’t work as my router’s public IP is dynamic but I tried setting the In. interface to pppoe-out1 and it seems to be working 
.
I have another question though - Is there a way to forward the initial IP address? For example, suppose that a computer with IP 8.8.8.8 accesses my web server from the internet. Is there a way to forward the original IP address, so my server knows that IP 8.8.8.8 tried to access it and not my router’s LAN IP?