Winbox to two different routers behind ADSL

maximo64 · February 27, 2008, 3:46am

Id like to access 2 routers used in a point-to-point link behind a DSL connection. Here is the configuration:

Internet — ADSL modem 10.0.0.2/24 — 10.0.0.1/24 (MT RB 133) AP 192.168.4.49/28 — Wireless link ---- 192.168.4.50/28 (MT RB 133 C) 192.163.4.64/28 - Ethernet ---- PC
RB133 is configured as AP and RB133C as Station, both using Nstreme.

Since I can get the public address of the ADSL Modem from ChangeIp DDNS script, I´d like to access both MT routers. Currently when I run Winbox from Internet using modem public IP address , I access only the first MT (RB 133) on port 8291.

Is there any way to run Winbox to the second MT (RB 133C) from public internet ? Can I have a Winbox client set for a different port other than 8291, I think this will solve the problem using dst-natting.

Thanks.

skillful · February 27, 2008, 11:08am

On your edge router, make a dstnat rule to forward all incoming traffic on your wan, on port 8292 to port 8291 on the station.

/ ip firewall nat
add chain=dstnat action=dst-nat to-addresses=192.168.4.50 to-ports=8291 in-interface=wan dst-port=8292 protocol=tcp comment="forward Winbox to Station" disabled=no

NB: replace “wan” with the name of the interface facing the ADSL modem
to-addresses is the ip address of the station

To have winbox connect to the station from outside your network, just specify port 8292 after your public IP address.
Like this: x.x.x.x:8292
where x.x.x.x is your public ip address

maximo64 · February 27, 2008, 2:31pm

Thanks Skillfull, its a good idea.

I tried DST_natting.

The problem now is that the Winbox client does not seem send to port 8292.
I specified x.x.x.x:8292 on the winbox client but when it is connecting says “connecting to port 8291” and the connection ends on the edge router. Im running Winbox v2.9.38 on Windows XP.

Thanks.

mrz · February 27, 2008, 2:52pm

In version 3.x you can change port that winbox will use.
/ip service set winbox port=xxxx

maximo64 · February 27, 2008, 4:08pm

Thanks mtz

However if I change winbox port on the edge router how can access to both routers (edge and station) with two different port numbers ?

I still think that my problem is on the winbox client that does not allow me to specify other port.

skillful · February 27, 2008, 6:01pm

The latest version of Winbox (ver 2.2.13) allow you to specify port. Just download it off any router running ROS ver 3.2 and above.

maximo64 · February 27, 2008, 6:52pm

Thanks Skillfull !!!
problem solved.

Vigor · April 1, 2008, 12:12am

This is so not true. Winbox v2.2.13 does not succeed to login in MikroTik 2.9.51 when using a non-default port, while on the other hand Winbox v2.2.10 is OK with that.

Vigor · September 15, 2008, 1:59pm

Could someone verify the above behavior on his router?

galaxynet · September 15, 2008, 2:50pm

maximo64 -
Why don’t you just setup a VPN (ppp menu) or PPtP - whatever you want to call it… Give the VPN an unused IP on the other side of MT Edge. Turn on Proxy Arp for that interface. Once connected via VPN you can call the routers by their local IP addresses right from winbox…

R/

omega-00 · September 16, 2008, 6:40am

Just download a copy of winbox of whichever router you are connecting to and keep one of the old and the new version. Your saved ips, usernames and passwords will show up in either winbox.
Problem solved.

Vigor · December 4, 2008, 10:41am

WinBox Loader v2.2.13 works ok with non-default (8291) ports on RouterOS v3.x, while, on the other hand, design problem still remains with v2.2.13 and RouterOS v2.9.51

The solution to use two different versions of WinBox Loader is something to consider and definitely provides help,
but shouldn’t MikroTikls consider this behavior as a design flaw in the latest WinBox Loader app and include a fix in its next release?