I have 2 mikrotic. For exemple Mikrotic A - have external ip adresss, and mikrotik B - dont have external ip adress. I want to reach Miktrotik B device using external ip adresas.
Now i have connected Mikrotic B by L2TP to Mikrotic A. So now when į connect to Mikrotic A network i can access to Mikrotic B and all devices on Mikrotic B. In this case everythink is okey.
But the main goal is to use MIkrotik A external ip adress with port to access mikrotic B. When i make NAT rule, for port forwardind it dont work. I try to make portforwar to Mikrotik A network device, its work. What i have to do to reach Mikrotic B device using external ip address?
Problem is that Mikrotik B routes reponses via its default gateway and it can’t work. You have two options:
a) If you don’t care about original source addresses, then on Mikrotik A add srcnat/masquerade on the VPN interface where client Mikrotik B is connected. That way everything will look as if it’s from Mikrotik A an responses will be routed correctly back to it.
b) If you do care about original source addresses, then on Mikrotik B you need new routing table with one default route pointing to VPN interface (which is connected to Mikrotik A), then mark new incoming connections from tunnel, and mark routing for responses to those marked connections to use the new routing table.