Code: Select all
In /ip firewall filter nat
add chain=dstnat action=dst-nat to-addresses=192.168.88.1 to-ports=53 protocol=tcp dst-port=53
add chain=dstnat action=dst-nat to-addresses=192.168.88.1 to-ports=53 protocol=udp dst-port=53
why is this not a src-nat, or a forward rule? the request goes from the client to the server back
my understanding is the request goes out the standard dns server, whatever is set, but on reply is when it get modified and sent to another dns server with the reply, how does the original client even get the request?
i don't understand how this rule works at all. any help??? i don't like blindly installing rules i don't understand
i always used dstnat to do port forwarding. i don't understand at all