I think it is destination port to Server. But this confuses me. For example this rule
It is trying to match packet that is destined to 10.111.0.0/2 but at the same time packet that come in to LAN? shouldn't it be OUT-INTERFACE of WAN??
Code: Select all
/ip firewall mangle add chain=prerouting dst-address=10.111.0.0/24 action=accept in-interface=LAN[