RouterOS 2.9.28
Private LAN 192.168.100.0 /24
Hotspot 10.5.50.0 /24
Accesspoints 10.5.50.5/24 - 10.5.50.10/24
SYSLOG server 192.168.100.5/24 port:514
I would like to send syslogs from the ACCESS POINTs (10.5.50.5 /24 - 10.5.50.10 /24) in the Hotspotsegment
by the Mikrotik to the
SYSLOGSERVER (192.168.100.5/24).
it work´s not
IP firewall nat
chain=dstnat dst-address= 10.5.50.1 protocol=tcp dst-port=514 action=netmap to-addresses= 192.168.100.5 to-ports=514
greets ITSH.NET
Use a different/own subnet for the APs and set this subnet to bypass hotspot.
Configure Syslog settings in AP with IP of Syslog Server.
You don't need dstnat, only srcnat (= Masquerading).
it´s right ???
the Accesspoints is for the Hotspot.
ip firewall nat
chain=srcnat protocol=tcp dst-port=514 action=netmap to-addresses=192.168.100.5 to-ports=514
Make sure syslog server is accessible from Access points.
You have to use ‘ip hotspot walled-garden ip’ to allow specific data without HotSpot authentication,
e.g. to allow 514 port number to 192.168.100.5:
‘/ ip hotspot walled-garden ip add action=accept dst-address=192.168.100.5 dst-port=514 protocol=used_protocol’
Thanks sergejs,
I will try whether it runs
Also make sure the syslog server you are runnign accept remote messages. On a Unix they dont by default, needs to be configured.