Simple question here, I think.
What rule is required on the bottom router to allow 'User 1' to get traffic (single TCP port) to Device 1 and 2? Will dst-nat work when there is no NAT masquerading on the VPN-client router?
For eg., will:
Let the remote user see a web-server on Device 2 if he browses to http://10.0.1.10:8080 whilst also being connected to the VPN server?
Code: Select all
/ip firewall nat add chain=dstnat dst-address=10.0.1.10 protocol=tcp dst-port=8080 action=dst-nat to-addresses=172.16.100.6 to-ports=80