hi there guys
today im asking about port forwarding
so i just started to replace my router from tp link to mikrotik and i just realy confused
so tp link is so easy like u just type start port end port protocol and ur ip
but in mikrotik it was so diffrent or mayBE u guys can help 
thanks
Here is an example of destination NAT (port forwarding):
/ip firewall nat
add action=dst-nat chain=dstnat comment="Unifi Video" dst-port=7443,7446 protocol=tcp to-addresses=10.11.43.4
add action=dst-nat chain=dstnat comment="RDP" dst-port=3389 protocol=tcp to-addresses=10.11.43.254
none of them work
i make uttorent to listen to the port that i want but when i see in canyouseeme it still say couldnt see you β¦ on port 1337
Hi derell
Donβt forget to add a filter rule to allow the traffic:
ip firewall filter add chain=forward connection-nat-state=dstnat action=accept comment="allow NAT'd traffic" disabled=no
hope that helps.
yi already done that but sadly it gave me same result so i did i do something wrong so this is my rule
chain dst nat
dst port 1337
action dst nat
to port 1337
to addres my ip4 addres
Hmm, can you please paste the output of:
ip firewall filter print
Make sure to delete or obscure any private data.
how u can do that there no filter print
If you are using winbox you can open a terminal and export bits of the config with the print command.
On the left side if Winbox, under Tools you should see New Terminal, click this.
in the terminal window that opens type:
ip firewall filter print
this will output something like this in the terminal window:
Flags: X - disabled, I - invalid, D - dynamic
3 ;;; default configuration
chain=input action=accept protocol=icmp log=no log-prefix=""
4 ;;; default configuration
chain=input action=accept connection-state=established log=no log-prefix=""
5 ;;; default configuration
chain=input action=accept connection-state=related log=no log-prefix=""
Using the mouse highlight and right-click, select copy.
You can now paste into the forum, although make sure to remove any sensitive info.
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; allow NATβd traffic
chain=forward action=accept connection-nat-state=dstnat log=no
log-prefix=ββ
there u go hope u can help me
Hmm, that looks ok. And if it is the only rule then it would work anyway because ROS is default accept.
Can you do that same with:
ip firewall nat print
chain=dstnat action=dst-nat to-addresses=my ip4 to-ports=1334
protocol=tcp dst-port=1334 log=no log-prefix=ββ
and
chain=dstnat action=dst-nat to-addresses=my ip4 to-ports=1337
protocol=tcp dst-port=1337 log=no log-prefix=ββ
i tried port forwarding both of them none of them work
OK, make sure you specify which interface the traffic will arrive in, so in each rule either add the interface or the IP of the interface as the destination.
Otherwise those rules will match any traffic traversing the router on those ports.
So What i should do
In interface or out interface
And What should i pick
Thanks btw u help ke This far
Destination address if you have a static IP from your ISP Or In Interface and choose your wan interface as the traffic is coming in on that interface.
This:
If you are going to specify the interface you need to use
in-interface=
this is because you want to translate traffic arriving in your WAN interface.
so if i just wanted to open the port
so that canyouseeme succses
what interface should i put thanks though 
:)