Main problem, if i forward a port to internal ip, lets say 213.213.213.213:25 -> 10.0.0.1:25, i cannot access it using FQDN from internal network.
In current example port 25 is forwarded, so if i use mail.blabla.com as SMTP server, then from internal network i get timeout and mail cannot be sent, from outside everything works ok.
I know there is workaround, to create record in local DNS to point to 10.0.0.1, but this only partialy resolves the problem.
Because if a user goes somwhere outside local network, with his notebook, and after a while comes back, he has record in his notebook DNS cache that mail.blabla.com is at 213.213.213.213 and he cannot send mail from local network anymore, until dns cache is flushed.
And equal situation is for everything else, if i forward port 80, from outside webpage is accessible, but from inside is not.
RB433, v3.28
Port forwarding done like this :
/ip firewall nat add chain=dstnat dst-address=69.69.69.69 protocol=tcp dst-port=5900 \
action=dst-nat to-addresses=192.168.1.101 to-ports=5900
Tried also other method found in forums, using netmap, the same result.
In linux if i do port forwarding in iptables then there is no such problems, also in any "cheapy" router like D-Links, Linksys etc, there's also no such problems with port forwarding.