I am a newbie, but I understand the basics.
Customer has Verizon DSL modem -> Netgear Router with RDC port forwarding from 3391 to 3389 on Windows server.
DSL modem is at 129..x..x..x and hands out DHCP subnet to Netgear Router, 192.168.1.0/30
Thus the Netgear is at 192.168.1.2.
The Netgear in turn hands out DHCP on 10.0.0.0/24 to a windows server at 10.0.0.75:3389
If one RDC's from a remote windows box to 129.x.x.x:3189 the reqest is passed to the windows server at 10.0.0.75:3389
I wish to replace the netgear with a MT 951 so I can set up vpn.
The MT had its config cleaned, as I am used to setting up configs by hand.
The MT WAN IP is received from DSL modem as 192.168.1.2/30
The MT LAN IP is manually set to 10.0.0.1/24 with windows internal server at 10.0.0.75/25
Ether 1 is the WAN, and Bridge 1 is the LAN on ether 2 3 4 5.
There are two firewall rules entered by hand.
1.) The first sets ups src-nat using masquerade between the WAN outgoing port eth1 and IP 192.168.1.2.
I trust the DSL modem nats it again to 129.x.x.x.
2.)I also I trust the DSL modem sets ups incoming DST-NAT from 129.x.x.x:3189 on modem to 192.168.1.2:3191 on MT WAN because the netgear shows port forwarding as RDC 3391 3391 3389 3389 10.0.0.75.
A second firewall rule in MT setups up a DST-NAT from 192.168.1.2:3191 to 10.0.0.75:3189
The netgear setup has been working fine to allow remote RDC connections to the server at 10.0.0.75.
My MT settings will not allow the connection to work, although standard internet access works fine across the masquerade.
I there something dead obvious about what I have done?
I have no access to the DSL modem, and I have local access to the MT but I have to go to the office to talk to it.
I simply want to be able to RDC to the 129.x.x.x., have it go to the server at 10.0.0.75, and then allow me to CHROME back
to the MT at 10.0.0.1 with webfig.
Homer Smith, CEO LIghtlink Internet.