Hi,
I do port forwarding with Mikrotik routerOS. But public ip addresses do not appear on the web server. The problem may be caused by the cause.
2020-10-24 08:37:17 W3SVC7 TITAN1 192.168.99.251 GET /kelime.aspx id=218634 80 - 192.168.99.100 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - https://www.turkcesozlukler.com 200 0 0 16358 322 979
Post all NAT rules - execute /ip firewall nat export and copy-paste the output here (inside [__code] [/code] block).
/export hide-sensitive file=anynameyouwish
I was saving heavy guns for next step … right now I assume OP has some too broad src-nat rule in action.
So you want to peel off the clothes slowly and leave something to the imagination…
/interface ethernet
set [ find default-name=ether2 ] name=LAN
set [ find default-name=ether1 ] name=WAN
/ip pool
add name=dhcp_pool1 ranges=10.0.0.2,10.0.0.3
/ip dhcp-server
add address-pool=dhcp_pool1 disabled=no interface=LAN lease-time=1w name=\
DhcpServer
/port
set 0 name=serial0
set 1 name=serial1
/queue interface
set LAN queue=ethernet-default
set WAN queue=ethernet-default
/interface bridge settings
set use-ip-firewall=yes
/ip settings
set tcp-syncookies=yes
/ip address
add address=10.0.0.1/24 interface=LAN network=10.0.0.0
add address=23.252.68.35 interface=WAN network=23.252.68.33
/ip cloud
set update-time=no
/ip dhcp-server network
add address=10.0.0.0/24 dns-server=\
195.175.39.39,1.1.1.1,8.8.8.8,195.175.39.50 gateway=10.0.0.1
/ip dns
set servers=195.175.39.39,195.175.39.40
/ip firewall address-list
add address=51.xxx.xxx.xxx list=Mikrotik
add address=178.xxx.xxx.xxx list=Mikrotik
/ip firewall filter
add action=accept chain=input comment=Mikrotik dst-address=23.252.68.35 \
dst-port=8291 protocol=tcp src-address-list=Mikrotik
add action=accept chain=forward comment="Y\F6nlendirilen Trafik" log-prefix=\
FORWARD
add action=drop chain=input in-interface=!LAN log-prefix=DROP1
/ip firewall nat
add action=masquerade chain=srcnat out-interface=WAN src-address=10.0.0.0/24 \
src-address-type=""
add action=src-nat chain=srcnat src-address=10.0.0.0/24 to-addresses=\
23.252.68.35
add action=dst-nat chain=dstnat comment=RDP disabled=yes dst-address=\
5.255.61.93 dst-port=3389 protocol=tcp src-address-list=Office \
to-addresses=10.0.0.2 to-ports=3389
/ip firewall service-port
set ftp disabled=yes
set tftp disabled=yes
set irc disabled=yes
set h323 disabled=yes
set sip disabled=yes
set pptp disabled=yes
set udplite disabled=yes
set dccp disabled=yes
set sctp disabled=yes
/ip route
add distance=1 gateway=23.252.68.33
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/ip ssh
set allow-none-crypto=yes forwarding-enabled=remote
/system identity
set name=MIKROTIK_USA2
2020-10-28 02:44:27 W3SVC7 TITAN1 10.0.0.5 GET / 80 - 10.0.0.5 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - https://www.buycpanel.org 200 0 0 16358 322 979
2020-10-28 02:43:27 W3SVC7 TITAN1 10.0.0.5 GET / 80 - 10.0.0.5 HTTP/1.1 Mozilla/5.0+(compatible;+bingbot/2.0;++http://www.bing.com/bingbot.htm) - - https://www.cpanellicense.org 200 0 0 16358 322 979
Hello again, thank you for everything. Problem solved. The subject may be locked.
If those are all the firewall rules you have and the router faces the internet then you need to pull the plug as its not setup securely.