Hi
I am not sure about what connection tracking is, but this should be the most important things in my config.
I can see in the Firewall / Nat Bytes and Packages that data is received when I try to connect to my Web server on the public IP of WAN2 but it’s not able to display the page.
When I do the same on the public IP of WAN 1 there is no problem.
I am using an external server to try to connect to my server to be sure that’s it working properly.
Hope someone can find any errors there.
/interface ethernet
set 0 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes l2mtu=1524 mac-address=00:30:18:A3:19:34 \
master-port=none mtu=1500 name=Port_1_WAN1 speed=100Mbps
set 1 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes l2mtu=1524 mac-address=00:0C:42:59:2E:12 \
master-port=none mtu=1500 name=Port_2_LAN speed=100Mbps
set 2 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes l2mtu=1524 mac-address=00:0C:42:59:2E:13 \
master-port=none mtu=1500 name=Port_3_WAN2 speed=100Mbps
set 3 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes l2mtu=1524 mac-address=00:0C:42:59:2E:14 \
master-port=none mtu=1500 name=Port_4_AP speed=100Mbps
set 4 arp=enabled auto-negotiation=yes bandwidth=unlimited/unlimited comment=\
"" disabled=no full-duplex=yes l2mtu=1524 mac-address=00:0C:42:59:2E:15 \
master-port=none mtu=1500 name=Port_5_Lan_Bygning speed=100Mbps
/ip dhcp-client
add add-default-route=yes comment="" default-route-distance=0 disabled=no interface=Port_1_WAN1 use-peer-dns=yes use-peer-ntp=yes
add add-default-route=yes comment="" default-route-distance=1 disabled=no interface=Port_3_WAN2 use-peer-dns=yes use-peer-ntp=yes
/ip route
add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=95.154.16.1 scope=30 target-scope=10
[admin@MikroTik] /ip route nexthop> print
0 address=95.154.16.1 gw-state=reachable scope=10 check-gateway=none
1 address=95.166.21.1 gw-state=reachable scope=10 check-gateway=none
/ip firewall nat
add action=passthrough chain=unused-hs-chain comment="place hotspot rules here" disabled=yes
add action=masquerade chain=srcnat comment="default configuration" disabled=no out-interface=Port_1_WAN1
add action=dst-nat chain=dstnat comment="WEB Server" disabled=no dst-port=80 in-interface=Port_3_WAN2 protocol=tcp to-addresses=\
192.168.200.101 to-ports=80
add action=dst-nat chain=dstnat comment="WEB Server" disabled=no dst-port=80 in-interface=Port_1_WAN1 protocol=tcp to-addresses=\
192.168.200.101 to-ports=80