Community discussions

 
User avatar
Stuntrider
just joined
Topic Author
Posts: 8
Joined: Tue Jul 29, 2014 11:12 am
Location: Russia

ip cloud rule broblem

Tue Jul 29, 2014 11:47 am

what you need to add a rule in the firewall to work ip cloud. I have a rule in the late drop input and it interferes with the service.
everything new is always fun
 
npero
Member
Member
Posts: 316
Joined: Tue Mar 01, 2005 1:59 pm
Location: Serbia

Re: ip cloud rule broblem

Tue Jul 29, 2014 12:45 pm

add chain=input comment=Cloud in-interface=WAN_interface protocol=udp src-port=15252
My rule for Cloud, also Normis send me name of server if you want to open all port to cloud server.
 
User avatar
Stuntrider
just joined
Topic Author
Posts: 8
Joined: Tue Jul 29, 2014 11:12 am
Location: Russia

Re: ip cloud rule broblem

Tue Jul 29, 2014 12:51 pm

does not work
everything new is always fun
 
User avatar
Stuntrider
just joined
Topic Author
Posts: 8
Joined: Tue Jul 29, 2014 11:12 am
Location: Russia

Re: ip cloud rule broblem

Tue Jul 29, 2014 12:55 pm

my serial number 444a04378c0a
everything new is always fun
 
npero
Member
Member
Posts: 316
Joined: Tue Mar 01, 2005 1:59 pm
Location: Serbia

Re: ip cloud rule broblem

Tue Jul 29, 2014 1:39 pm

Paste your firewall rules in input chain, that rules tested on five router and working.

Whet disable your input rules in filter it is working ?
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 24264
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia

Re: ip cloud rule broblem

Tue Jul 29, 2014 1:50 pm

maybe you have deleted the default firewall rule that allows "established" connections?
No answer to your question? How to write posts
 
User avatar
Stuntrider
just joined
Topic Author
Posts: 8
Joined: Tue Jul 29, 2014 11:12 am
Location: Russia

Re: ip cloud rule broblem

Tue Jul 29, 2014 1:52 pm

yes, if I unplug the rule prohibiting all works
everything new is always fun
 
User avatar
Stuntrider
just joined
Topic Author
Posts: 8
Joined: Tue Jul 29, 2014 11:12 am
Location: Russia

Re: ip cloud rule broblem

Tue Jul 29, 2014 1:55 pm

maybe you have deleted the default firewall rule that allows "established" connections?
There are 2 rules to permit INPUT and forward passing established connections
everything new is always fun
 
User avatar
Stuntrider
just joined
Topic Author
Posts: 8
Joined: Tue Jul 29, 2014 11:12 am
Location: Russia

Re: ip cloud rule broblem

Tue Jul 29, 2014 2:05 pm

here is a screenshot of my firewall
Untitled-1.jpg
may be something wrong with me?
You do not have the required permissions to view the files attached to this post.
everything new is always fun
 
User avatar
rextended
Forum Guru
Forum Guru
Posts: 2946
Joined: Tue Feb 25, 2014 12:49 pm
Location: Capalbio, Tuscany, Italy

Re: ip cloud rule broblem

Tue Jul 29, 2014 2:44 pm

But Cloud service how works?


CPU -> output -> cloud server -> reply -> same (related/estabilished) connection before -> CPU

or

cloud server -> input -> CPU -> reply -> same (related/estabilished) connection before -> cloud server

?

Is working on this way, and input chain is not "used"

iprouterboard:port UDP -> output chain -> 81.198.87.240:15252
81.198.87.240:15252 UDP -> related reply -> iprouterboard:port

You do not have any new connection on Input but only estabilished/related.

Firewall Connection Tracking are active?
Last edited by rextended on Tue Jul 29, 2014 2:51 pm, edited 1 time in total.
I'm Italian, not English. Sorry for my imperfect grammar.
 
User avatar
normis
MikroTik Support
MikroTik Support
Posts: 24264
Joined: Fri May 28, 2004 11:04 am
Location: Riga, Latvia

Re: ip cloud rule broblem

Tue Jul 29, 2014 2:50 pm

this:
CPU -> output -> cloud server -> reply -> same (related/estabilished) connection before -> CPU
cloud server makes no connection, the routerboard asks and gets reply in established connection. accepting established should be enough
No answer to your question? How to write posts
 
User avatar
rextended
Forum Guru
Forum Guru
Posts: 2946
Joined: Tue Feb 25, 2014 12:49 pm
Location: Capalbio, Tuscany, Italy

Re: ip cloud rule broblem

Tue Jul 29, 2014 2:52 pm

this:
CPU -> output -> cloud server -> reply -> same (related/estabilished) connection before -> CPU
cloud server makes no connection, the routerboard asks and gets reply in established connection. accepting established should be enough
I do not know if you have reply to my post before I complete it:

iprouterboard:port UDP -> output chain -> 81.198.87.240:15252
81.198.87.240:15252 UDP -> related (estabilished) reply -> iprouterboard:port
I'm Italian, not English. Sorry for my imperfect grammar.

Who is online

Users browsing this forum: No registered users and 108 guests