I would appreciate your help. Reading all related forum post did not help.
I am using SXT Lite 5 as CPE client. My wireless AP is a Fritzbox 7390 with cable internet access. Now I want to access SXT Webfig from internet. Port forwarding in Fritzbox from 81 to 80 and to to SXT Lite 5 CPE seems ok.
Now invoking Webfig from internet using DDNS (i.e., http://xxx.mydyndsprovider.org:81) and it takes some seconds and sometimes Webfig Login screen appears. After inputting username and password browser idles endlessly and nothing happens. Any further access to Webfig does not show login screen again. ????
Any other Webaccess, for example to other devices in LAN behind CPE, is ok. Access to CPE from LAN is ok as well.
My config:
ros code
[admin@MikroTik] /ip firewall filter> print Flags: X - disabled, I - invalid, D - dynamic 0 ;;; default configuration chain=input action=accept protocol=icmp 1 ;;; default configuration chain=input action=accept connection-state=established 2 ;;; default configuration chain=input action=accept connection-state=related 3 ;;; to allow remote access from internet to WebFig (my new rule) chain=input action=accept protocol=tcp in-interface=wlan1-gateway dst-port=80 4 ;;; default configuration chain=input action=drop in-interface=wlan1-gateway 5 ;;; default configuration chain=forward action=accept connection-state=established 6 ;;; default configuration chain=forward action=accept connection-state=related
Do you have any clue what could be the reason? Sorry, I am real beginner.
Just for reference, here is my whole config:
ros code
# sep/23/2013 20:16:34 by RouterOS 6.4 # software id = MPIF-N75C # /interface wireless set 0 band=5ghz-a/n channel-width=20/40mhz-ht-above disabled=no frequency=\ 5300 ht-rxchains=0,1 ht-txchains=0,1 l2mtu=2290 mode=station-pseudobridge \ name=wlan1-gateway ssid="FRITZ!Box Fon WLAN 7390" /interface ethernet set 0 name=ether1-local /interface wireless security-profiles set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk group-ciphers=\ tkip,aes-ccm mode=dynamic-keys unicast-ciphers=tkip,aes-ccm \ wpa-pre-shared-key=123412341234 wpa2-pre-shared-key=123412341234 /ip hotspot user profile set [ find default=yes ] idle-timeout=none keepalive-timeout=2m \ mac-cookie-timeout=3d /ip pool add name=default-dhcp ranges=192.168.88.10-192.168.88.254 /ip dhcp-server add address-pool=default-dhcp disabled=no interface=ether1-local name=default /queue simple add dst=185.12.240.0/24 limit-at=32k/0 max-limit=64k/0 name=GuaranteeWoTEU2 \ priority=7/7 total-priority=7 add dst=213.252.131.0/24 limit-at=32k/0 max-limit=64k/0 name=GuaranteeWoTEU1 \ priority=7/7 total-priority=7 add burst-limit=22k/0 burst-threshold=20k/0 burst-time=1s/0s dst=\ 198.211.96.60/32 limit-at=10k/0 max-limit=20k/0 name=\ LimitTrafficRelayAerofs queue=default/default-small /system logging action set 0 memory-lines=100 set 1 disk-lines-per-file=100 /ip address add address=192.168.88.1/24 comment="default configuration" interface=\ ether1-local network=192.168.88.0 /ip dhcp-client add comment="default configuration" dhcp-options=hostname,clientid disabled=\ no interface=wlan1-gateway /ip dhcp-server network add address=192.168.88.0/24 comment="default configuration" dns-server=\ 192.168.88.1 gateway=192.168.88.1 /ip dns set allow-remote-requests=yes /ip dns static add address=192.168.88.1 name=router /ip firewall filter add chain=input comment="default configuration" protocol=icmp add chain=input comment="default configuration" connection-state=established add chain=input comment="default configuration" connection-state=related add chain=input comment=\ "to allow remote access from internet to WebFig (my new rule)" dst-port=80 \ in-interface=wlan1-gateway protocol=tcp add action=drop chain=input comment="default configuration" in-interface=\ wlan1-gateway add chain=forward comment="default configuration" connection-state=\ established add chain=forward comment="default configuration" connection-state=related add action=drop chain=forward comment="default configuration" \ connection-state=invalid add chain=input dst-port=80 protocol=tcp add chain=input /ip firewall nat add action=masquerade chain=srcnat comment="default configuration" \ out-interface=wlan1-gateway to-addresses=0.0.0.0 add action=dst-nat chain=dstnat dst-port=4040 protocol=tcp to-addresses=\ 192.168.88.254 to-ports=4040 add action=dst-nat chain=dstnat dst-port=4041 protocol=tcp to-addresses=\ 192.168.88.254 to-ports=4041 add action=dst-nat chain=dstnat dst-port=5000 protocol=tcp to-addresses=\ 192.168.88.254 to-ports=5000 add action=dst-nat chain=dstnat dst-port=5001 protocol=tcp to-addresses=\ 192.168.88.254 to-ports=5001 add action=dst-nat chain=dstnat dst-port=8080 protocol=tcp to-addresses=\ 192.168.88.254 to-ports=8080 /ip proxy set parent-proxy=0.0.0.0 /ip service set api disabled=yes /system clock manual set time-zone=+02:00 /system leds set 0 interface=wlan1-gateway /system logging add topics=wireless,debug /system ntp client set enabled=yes mode=unicast primary-ntp=130.149.220.70 secondary-ntp=\ 46.4.37.135 /system watchdog set watchdog-timer=no /tool graphing interface add interface=wlan1-gateway /tool graphing queue add /tool graphing resource add /tool mac-server set [ find default=yes ] disabled=yes add interface=ether1-local /tool mac-server mac-winbox set [ find default=yes ] disabled=yes add interface=ether1-localThanks in advance.