My network have rule - what is not permitted is forbidden. So when i try configure NAT using RDP from internet i get closed ports.
I add rule to firewall accept all incoming packets for port 3389 (changed by NAT from 33389 before processing through firewall), but also have
closed port. So i add second rule to firewall - pasthrough all packets from local network to internet from port 3389, and only after this i see open port 33389. This is my config:
Now when i want to forward port i need add 2 rule to firewall and 1 rule to nat. How can I configure mikrotik do this automatically for new NAT rules? Or add universal rule to firewall alllow all incoming and outgoing packets for NAT rules?
Code: Select all
/ip fi fi add action=accept chain=forward comment=\ "Allow incoming RDP connections from internet for RDPUSERS" disabled=no \ dst-port=3389 protocol=tcp src-address-list=RDPUSERS add action=accept chain=forward comment=\ "Allow outgoing RDP packets from local net" disabled=no protocol=tcp \ src-port=3389 /ip fi nat add action=dst-nat chain=dstnat comment="RDP 192.168.1.55" disabled=no \ dst-address=184.108.40.206 dst-port=33389 protocol=tcp src-address-list=\ RDPUSERS to-addresses=192.168.1.55 to-ports=3389