Hi Guys,
i have router routing multiple independant networks. BGP and plain routing appears to be working fine. how ever on one interface i’m doing Masquerading and i’m seeing strange behavior packets reach destination with correct IP address but when it comes back it never reaches host inside of the NATed network.
WAN=2.2.2.2/30
GW=2.2.2.1/30
Routing Rule:src-address=2.2.2.2.2/32 action=lookup table=NATed
Bridge-LAN=10.74.0.1/20
i also have Firewall mangle rule
chain=prerouting action=mark-routing new-routing-mark=SosuaNATed passthrough=no src-address=10.74.0.0/20
dst-address=!10.74.0.0/20 in-interface=Bridge-LAN log=no log-prefix=“”
pinging from 10.74.0.2 or trying to use DNS on the outside host
tcpdump on destination host is showing that packet arrived and replied to 2.2.2.2
however nothing comes in to 10.74.0.2, torch Bridge-LAN on mikrotik also not showing any packets coming back.
Any idea what i’m missing here?
Thanks!
fennic2