All three gateways have a DST-NAT rule for port 3389 like this:
add chain=dstnat action=dst-nat to-addresses=192.168.224.254 to-ports=0-65535
dst-address=10.1.1.224 dst-port=3389 protocol=tcp comment=“” disabled=no
If I point to Gateway B from the same LAN using remote desktop client, I can reach the server.
But if I point to Gateway C, I can’t reach it.
Other public IPs of Gateway C point to other services in other PCs, and they work fine.
What am I missing?
Is there a “no more than 2 DST-NAT” rule ?
The server only has one def. gateway itself so if packet comes from other gw than the def. gw it will get the packet but the reply from server will go out of wrong interface (def gw).
The truth is everything was set up fine. I did nothing, and suddenly it started working 2 days later. It was not a reboot, I had already tried that.
I did not change anything in configuration.
Public IP was working (it pinged)
So, it just didn’t want to work!
I left it untouched, and after 2 days, it worked!
I just would like to know what to try/do when it ceases to work… if it switched on without my help, it will certainly cease without my intervention… and I don’t know what I’ll do then!