DNAT with dst-address unset not working at all
Posted: Wed Dec 10, 2014 10:21 am
Hi, I am trying to redirect all HTTP requests (to any IP address) from users within a specific network to a local web server but apparently my rule is not working. Connection tracking is set to auto, RouterOS version is 6.19, the rule is enabled, no other NAT rules are present in /ip firewall nat
My rule is:
In "print stats" I see some packet/bytes hits but the rule does not work as intended -- I do not see incoming packets in the firewall logs on the destination machine 192.168.15.180.
Also I can freely open any web site from the src-address network, which means my requests do not get redirected.
What could be the problem? It is such a simple rule...
My rule is:
Code: Select all
/ip firewall nat
add action=dst-nat chain=dstnat dst-port=80 log=yes protocol=tcp src-address=10.10.4.0/24 to-addresses=192.168.15.180 to-ports=80
Also I can freely open any web site from the src-address network, which means my requests do not get redirected.
What could be the problem? It is such a simple rule...