cant get my web server to go to the internet. use to have and linksys ea8500 put in the tcp and got the server out np. people used my wan ip addres or the domain name i had set up for it and it worked just got it month ago mikrotik router rb3011 and cant get it to work at all i put in the prots for the nat and do dst nat and nothing i can acess the server local network but not from inter and use it uses port 80 /443 useing xamp. before you ask i disaled the webgig i use winbox only. server is running 2016 windows server data center ui edition and its a dell blade server cs24-sc. since i can see it on any computer on my network and went theru the servers firewall and its letting me in its a router problem. i am fairly new to the router so i am trying my best. any help guys
Make sure the firewall’s filter rules aren’t blocking traffic to your server.
Add a rule:
chain=forward protocol=tcp dst-ports=80,443 dst-address=192.168.x.x action=accept
(use the inside IP / ports in your rule because filtering happens AFTER dstnat takes place)
Make sure this rule comes early enough in the forward chain so that it can match packets before any default drop rules.
ok that worked i can see iy local and if use my phone on phone network i can see it now ty again. my only last question was just wanted to make sure rest of the ports are good like i meant i specifed the ip addres staeait to the server so my pc wont have port 80 open
I’m not 100% sure I understand this question - I think you want to know whether allowing port 80,443 has opened these ports for any hosts other than the server.
Assuming that you didn’t specify dst-address=192.168.x.0/24 (or something like this containing a subnet prefix as opposed to a single host IP address) then no, it only opens the ports for that specific destination IP address. Furthermore, the dstnat rule will always map these ports to the address you specified in the nat rules section, so it won’t map to any other host anyway.