I decided to utilize a RB2011 that I had to give me more functionality (multiple subnets). The Mikrotik utilizes the DMZ feature of the Arris NVG486MQ. The Mikrotik is correctly configured for the functionality I need, except for the port forwarding. For example, here are two port forwarding rules that are very similar. Rule 5 opens the port just fine. Rule 6 does Not open the port.
Code: Select all
5 ;;; TCP Port 65520
chain=dstnat action=dst-nat to-addresses=192.168.1.200 to-ports=65520 protocol=tcp in-interface=ether1
dst-port=65520
6 ;;; TCP Port 65532
chain=dstnat action=dst-nat to-addresses=192.168.1.200 to-ports=65532 protocol=tcp in-interface=ether1
dst-port=65532 log=yes log-prefix=""
Log Entry
Time: Mar/09/2021...
Buffer: memory
Topic: firewall
info
Message: dstnat: in:ether1 out:(unknown 0), src-mac xx:xx:xx:xx:xx:xx, ad:04:20, proto TCP (SYN), 198.199.98.246:449730->47.187.xxx.xxx:65532, len 60
Port 65520 is opening fine.
Port 65532 is NOT opening
I have talked to Frontier TS. They assure me that by utilizing the DMZ (passthrough) there are no ports being blocked by Frontier.
Any idea what I might be doing wrong? Rule 5 works fine. Rule 6 was a copy of Rule 5 with the port change. I get exactly the same results when I try to forward port 65532 from the Arris router. The same ports that I can open on the Arris router I can open on the Mikrotik router. The same ports that I CANNOT open on the Arris router are the same ports i CANNOT open on the Mikrotik router.
Any insight would be appreciated.