I have two servers behind the Mikrotik
One is a web server the other is a Mail server.
I've put a Firewall rule in the Forward chain that says if any address destined to xx.xx.xx.229 (Server Address) going out on the servers port, then Jump to my chain that i made called (Servers_Rules).
In the chain i added rules to allow port 80, port 21, 20, 25, 110, 109 etc... just the main ports needed for web and mail.
This works great the servers seem to be safe this way, but for some strange reason the server cant surf the net.
I was running out of time so i left it like seeing that people could get to the mail and the web server so i figured a well i'll get to it when i can.
But two days latter i start to get phone calls from client saying people are not getting emails from them... and then it hit me oh shit duh!!! if the servers cant surf thats fine for the web server but not the mail, the MAIL server cannot connect to the outside world.
Does anyone have a clue as to why i made rules that protect the server from all other ports and you can get to it but it cant get out?
Thanks