MikroTik

Community discussions
https://forum.mikrotik.com/

Need some assistance with port forwarding to internal IP

https://forum.mikrotik.com/viewtopic.php?f=13&t=30309

Page 1 of 1

Need some assistance with port forwarding to internal IP

Posted: Fri Mar 13, 2009 4:05 pm
by Yeahlight
Picture of setup (RB450G): http://www.eqcprices.com/setup.JPG

The server is "athlon" (192.168.0.248) and I cannot seem to get port 3784 opened to allow clients to connect. I can connect locally through port 3784, so the issue must be with the configuration of the router.

/ip firewall nat add chain=dstnat protocol=tcp dst-port=3784 action=dst-nat to-address=192.168.0.248 to-ports=3784 in-interface=WAN

I am sure the issue is not with my above NAT rule, but rather something else.

Re: Need some assistance with port forwarding to internal IP

Posted: Fri Mar 13, 2009 8:27 pm
by yri
Picture of setup (RB450G): http://www.eqcprices.com/setup.JPG

The server is "athlon" (192.168.0.248) and I cannot seem to get port 3784 opened to allow clients to connect. I can connect locally through port 3784, so the issue must be with the configuration of the router.

/ip firewall nat add chain=dstnat protocol=tcp dst-port=3784 action=dst-nat to-address=192.168.0.248 to-ports=3784 in-interface=WAN

I am sure the issue is not with my above NAT rule, but rather something else.

add action=dst-nat chain=dstnat comment="" disabled=no dst-address=189.106.101.6 dst-port=3784 \
protocol=tcp to-addresses=192.168.0.5 to-ports=0-65535
add action=src-nat chain=srcnat comment="" disabled=no protocol=tcp src-address=192.168.0.5 \
src-port=3784 to-addresses=189.106.101.6 to-ports=0-65535

Re: Need some assistance with port forwarding to internal IP

Posted: Fri Mar 13, 2009 8:44 pm
by Yeahlight
Thank you for the reply.

I am assuming you want me to use my public IP address in place of 189.106.101.6 and my server's local IP in place of 192.168.0.5?

I added these rules and clients are still not able to connect through port 3784.

Re: Need some assistance with port forwarding to internal IP

Posted: Fri Mar 13, 2009 11:10 pm
by Pilgrim
Picture of setup (RB450G): http://www.eqcprices.com/setup.JPG

The server is "athlon" (192.168.0.248) and I cannot seem to get port 3784 opened to allow clients to connect. I can connect locally through port 3784, so the issue must be with the configuration of the router.

/ip firewall nat add chain=dstnat protocol=tcp dst-port=3784 action=dst-nat to-address=192.168.0.248 to-ports=3784 in-interface=WAN

I am sure the issue is not with my above NAT rule, but rather something else.

I think the line is correct and it should work. But it seems from the picture that the "to-address=192.168.0.248" was not recognized. try to make a /ip firewall nat print and check

Moreover, if your firewall is set up to block outside traffic not initiated from inside i.e. block all new connections from wan side the you need of course to put in a rule in your filter / forward chain to accept traffic to 3784

something like this

chain=forward action=accept protocol=tcp dst-port=3784

and the rule must be placed in the forward chain before all new connections are dropped.

rgs Pilgrim

Re: Need some assistance with port forwarding to internal IP

Posted: Sat Mar 14, 2009 3:04 pm
by elsecz
I tried to solve this problem also. I guess there's gonna be problem with default gateway of athlon machine. Can you make in terminal
Code: Select all
/ip dhcp-server network print
and send it?
All times are UTC+02:00
Page 1 of 1
Powered by phpBB® Forum Software © phpBB Limited
https://www.phpbb.com/