I have a strange issue with port forwarding on RB1100AHx4 running RouterOS v6.47.3.
I have done many tests but nothing works, even if everything seems right.
I try to access a Unifi Cloud Key device from outside, but unfortunately I cannot.
Unifi Cloud Key has local ip: 10.1.0.8 and port 8443 (as it is its default).
My setup:
Code: Select all
1 chain=forward action=accept protocol=tcp dst-address=10.1.0.8 dst-port=8443 log=yes log-prefix="fire6001-"
2 chain=forward action=accept connection-nat-state=dstnat
fire6001- forward: in:pppoe-out3 out:bridge1-hotel, proto TCP (SYN), 94.65.254.177:53853->10.1.0.8:8443, NAT 94.65.254.177:53853->(100.81.149.113:22201->10.1.0.8:8443), len 52
where: 94.65.254.177 is my dynamic public ip from the outside pc that I try to access Cloud Key, 100.81.149.113 is the dynamic public ip from the router that is installed the Cloud Key.
Port 22201 is redirecting to 8443 as you may see on my NAT rules below:
Code: Select all
0 chain=dstnat action=dst-nat to-addresses=10.1.0.8 to-ports=8443 protocol=tcp in-interface=pppoe-out3 dst-port=22201 log=yes log-prefix="natlog-"
1 chain=dstnat action=dst-nat to-addresses=10.1.0.8 to-ports=443 protocol=tcp in-interface=pppoe-out3 dst-port=22201 port="" log=no log-prefix=""
Because of logging, this is what I have in log file:
natlog- dstnat: in:pppoe-out3 out:(unknown 0), proto TCP (SYN), 94.65.251.3:63518->100.81.149.113:22201, len 52
Moreover, I try to use and log mangle rules:
Code: Select all
0 chain=prerouting action=passthrough protocol=tcp in-interface=pppoe-out3 dst-port=22201 log=yes log-prefix="mangle-"
mangle- prerouting: in:pppoe-out3 out:(unknown 0), src-mac 08:96:ad:2e:4d:ea, proto TCP (RST), 94.65.251.3:63518->100.81.149.113:22201, NAT 94.65.251.3:63518->(100.81.149.113:22201->10.1.0.8:8443), len 40
Even if in log file, everything seems to be fine, I cannot access my Unifi Cloud Key at all. I had tried to access it from too many different devices and networks outside, but with no luck.
Any ideas????