I´m configuring my new router Mikrotik CCR1036-8G-2S+ with Firmware 3.26
I have a /24 public IP (for this example imagine 1.1.1.0/24) My router has one of this IP.. and I can access to my router from internet without problem.
In the Ethernet 6 I have a server that has configured one public IP from my range (imagine 1.1.1.144) but there is no way to reach it from Internet. How can I do it?.
On the other hand.. in the ethernet 2 I have another server with the private IP 192.168.1.2. I´m trying to create an access in the address list typing that the 192.168.1.1/24 network 192.168.1.0 is reacheable by the ether2. Then I make a netmap to create a 1:1 nat and be reacheable from internet with the public IP 1.1.1.5, but it doesn´t work.
Should I do something with my ip public pool /24 in the router?
What is wrong in all this stuff? Of course.. I´m wrong
Sooo, lets start with your config.
How’s WAN configured? How’s your public block routed to you? Where is 1.1.1.1 address (interface)? Just share a bit of your config and it will get much more answers in decent timeframe.
Ok… first of all.. thank you for your answer and your time.
I´m just start with this mikrotik router so I only have configure the remote access. In the address list its 1.1.1.3/24 network 1.1.1.0 and the Interface.. my wan interface. So.. if I put in the winbox from my PC 1.1.1.3 I can access to the winbox.
I think… that with this configuration.. I´m configuring all my /24, but i don´t know.
This is all my configuration.. i´m just starting with this route.
OK, so your WAN port is configured with 1.1.1.3/24. Default route is pointing to 1.1.1.1/24. Its clear now. Do you want to expose server/s to internet completely ( like assign a address from your pool - 1.1.1.37) or you want to 1to1 NAT public IP’s to servers sitting on private pool? Its not complicated, just lets configure it step by step.
I have one server that is connected to ehternet 6 that has configured the IP 1.1.1.144 in the server. So I need to make that this 1.1.1.144 IP could be accesible from internet.
And in the other hand.. I have another server with the IP 192.168.1.1 that I will make a 1:1 NAT to use one of my Public IP (for example 1.1.1.100) to be accesible from internet.
In the firewall NAT I made a netmap.. but it doesn´t work.
As you can see, I need to make two servers public in two different ways.
For the first method I try to create an address like 1.1.1.144 is reacheable from ether6. It doesn`t work.
For the Second Method. I create two rules in the NAT. The first with action netmap chain dstnat and dst-address 1.1.1.5 (public IP) The second rule: Action netmap, chain srcnat an in the Src. Address 192.168.1.1
The only configuration is what I wrote about the public IPs.
I think the problem could be that I´m saying that all /24 public IP range are reachable by the WAN interface when this is not true. This will be the default gateway, but all the other IPs will be assigned to clients and servers using diferent interfaces.
So maybe this is why I can not map a NAT 1:1 and why i can not access to the server with the public IP.
All interfaces you plan to use as ports for servers, should be configured as access ports on switch. Hosts on these ports should be able to talk to WAN GW without issues.
In 2nd scenario, you need to put private IP to interface, masquerade private traffic to selected public IP, and then create NAT. So, depending of your device you should plan how many ports you are going to distribute to each scenario.
lets start with your config.