Hi all,,,
I'm Using MT and all is fine with me, but in the last few days one new customer on my network is subscribed at online video channels and he ask me to open port 5555 on tcp and udp can i do that ??? and how ???
Hi ;Hi all,,,
I'm Using MT and all is fine with me, but in the last few days one new customer on my network is subscribed at online video channels and he ask me to open port 5555 on tcp and udp can i do that ??? and how ???
Fair enough, but why would his customer then ask to 'open up' this port?Hilton,
No need to add this rules coz, By default, Nothing is Blocked in Mikrotik Firewall Filter.
ip firewall nat add chain=dstnat action=netmap protocol=tcp dst-port=5555 dst-address=[your client address here] to-ports=5555
Hi ;If you use masquerade you have to set dstnat mapping rule for this port:
It maps external tcp 5555 port to your clients 5555 port. Do the same with UDP port (protocol=udp).Code: Select allip firewall nat add chain=dstnat action=netmap protocol=tcp dst-port=5555 dst-address=[your client address here] to-ports=5555
best regards
is it possible to forward the traffic from port to another port which it has less traffic ? , like the example i wrote about .when the traffic increase on the VSAT modems i have , it become hard to open the yahoo messenger .
can i forward the port 5050 used by yahoo messenger to any other port ? , so when traffic increase the yahoo messenger will work fine without problems .
with best regards .
Please read something, just about anything on routing protocols.Hi ;If you use masquerade you have to set dstnat mapping rule for this port:
It maps external tcp 5555 port to your clients 5555 port. Do the same with UDP port (protocol=udp).Code: Select allip firewall nat add chain=dstnat action=netmap protocol=tcp dst-port=5555 dst-address=[your client address here] to-ports=5555
best regards
what about my question :is it possible to forward the traffic from port to another port which it has less traffic ? , like the example i wrote about .when the traffic increase on the VSAT modems i have , it become hard to open the yahoo messenger .
can i forward the port 5050 used by yahoo messenger to any other port ? , so when traffic increase the yahoo messenger will work fine without problems .
with best regards .
with best regards .
Hi ;Please read something, just about anything on routing protocols.Hi ;If you use masquerade you have to set dstnat mapping rule for this port:
It maps external tcp 5555 port to your clients 5555 port. Do the same with UDP port (protocol=udp).Code: Select allip firewall nat add chain=dstnat action=netmap protocol=tcp dst-port=5555 dst-address=[your client address here] to-ports=5555
best regards
what about my question :is it possible to forward the traffic from port to another port which it has less traffic ? , like the example i wrote about .when the traffic increase on the VSAT modems i have , it become hard to open the yahoo messenger .
can i forward the port 5050 used by yahoo messenger to any other port ? , so when traffic increase the yahoo messenger will work fine without problems .
with best regards .
with best regards .
Your bandwidth usage will be the same if your port 5050 does not pass traffic, and you pass it on just about any other port.
Meaning: If you use 5050 for ym for 20 users, and you forward or do whatever you want with 10 of them on port 5051, for example, you will still be using the same bandwidth. Plus, some applications just won't work this way.
And, as a short answer to the question, messing with ports in this kind of manner, yes it is possible. But for your problem, just won't help.
I mean, it would be really weird that your provider limit your bandwidth on a per port basis, leaving you with lots of http traffic and 10kb/s of ftp, for example.
What I was missing was action=netmap. Thanks bdr. Mind you it would have been helpful had the Mikrotik manual explained it properly.I'm baffled by MT's approach to port forwarding, too.
My DSL modem enables me to forward a specific port to any internal IP address, so that I can set something like 'PublicIP:1234' to point to any internalIP:port I want eg 192.168.10.10:23 giving me telnet access from the Internet to any Internal MT router.
However to get any MT RBOS router to port forward it seems I have to create a VLAN with its own IP address and then dst-nat it to the 'internal' address, which is fine on my internal network where I have as many private addresses as I need but would be useless if the MT router was also the public/private gateway and so had only one address on the public side.
Maybe I'm missing something.
No, I still can't get it to work - or understand it properly. Here's the scenario.
What I was missing was action=netmap. Thanks bdr. Mind you it would have been helpful had the Mikrotik manual explained it properly.