With all firewall rules deactivated it doesn’t work either why can that happen? even on passive mode it doesn’t help either
My topology is following.
FTP Server on amazon
|
WAN
|
ISP Router (192.168.10.1)
/ \
TPLink_router (192.168.10.10) Mikrotik ETH_1 (192.168.10.21)
/ \
laptop (192.168.1.102) Mikrotik ETH_2 (172.16.10.1) Mikrotik ETH_3 (172.16.11.1)
\ \
Tower (172.16.10.160) My FTP Server (172.16.11.50)
I found that if I disable the NAT rule which sends port 21 to my FTP server I’m able to contact the WAN FTP without problem. What I am missing here???!!
I am confused you have two routers attached to the ISP modem with the same LAN addresses??
Or are you saying they have two separate WANIP addresses (from the ISPs LAN structure)??
Because the TPLink is dumb router with fixed settings, the MT is a smart router than expects the human to make the necessary settings.
I think its because the MT sees the external WANIP request coming from the outside(tplink) and routes the traffic back as appropriate for dstnat.
Whereas the MT request to the WANIP is internal and will not work due to this diagram.
See diagram Number 3… https://help.mikrotik.com/docs/pages/viewpage.action?pageId=3211299
I have one ISP router, with 2 ETH, ETH1 goes to TPLINK, ETH2 goes to Mikrotik’s ETH_1
Many thx, I’ll check the links, I’m new to mikrotik and advanced network configuration, so somebody else configured the router and I’m taking it afterwards. I don’t know if you understood, I edited the question, but I cannot login to the ftp server in WAN through the Mikrotik. But I’ll check out the links you pointed out and see if I can understand what I have to do and where. Feel free to tell me what information I’m missing to give, or details of the current configuration of the MT
I think if you read the links you will get the idea.
Also feel free to post your config after any changes for comments etc.
/export hide-sensitive file=anynameyouwish
why can that happen? even on passive mode it doesn’t help either