Hi, I am not a professional, so please pardon if if I do not use the technically correct words!
I have an NVR in my LAN that goes through a Microtik router and need
- to reach the NVR from the outside only from a specific IP
- I need the NVR’s EMAIL sender be able to connect to the SMTP of the provider
before everyting worked.
Then to implement condition 1 I put 2 rules under FIREWALL–FILTER RULES:
a. forward Src Add LAN IP, Dst.Add. external IP, Protocol 6(tcp), Action: accept
b. forward Src.Add LAN IP, Dst.Add. empty, Protocol 6(tcp), Action: drop
and it works well. When I connect from the on chosen external IP it goes through, form any other external IP it rejects.
BUT: now Mail sending FROM THE NVR via SMTP to outside address does not work any more!
I tried to add a rule:
c.1 forward Src Add LAN IP, Dst.Add.empty, Protocol 6(tcp), Src.Port 465, Dst.Port 465, Action: accept
c.2 forward Src Add LAN IP, Dst.Add.empty, Protocol 6(tcp), Src.Port empty Dst.Port 465, Action: accept
I need to reach a google SMTP, so port 465, and assume internal send port is also 465, or should I link to another internal sending port? anyway leaving them all open (empty) it shouldn0t it work for all source ports anyway?
but it still does not work.
PS: rules order is
1-c1
2-a
3-b
Anyone can help please?
thanks!
Guido