Hi,
I'm looking for some help, maybe a direction. I've recently converted from cisco to mikrotik for my server room network, and after a rocky week of configuration and trying to get things to work many services are working.
My situation is:
- 5 public static IPs, 1st is default WAN IP for outgoing connections by client devices (works) - ALL public IPs are on a single WAN port
- several web services are behind this router, including http, https, dns, and realated email services
- web and DNS all resolve from the outside to their respective addresses, even the webmail interfaces are accessible to both email servers.
- clients can access internet and IP1 shows up as their originating address as intended
The Problem:
I have 2 email servers resolving email for different domains, in the cisco router I had 1-1 NAT setup for this and firewall rules to allow access to the desired ports (25, 110, 143, 587, 993) for each server from the outside world, and this setup worked without issues.
I am new to using NAT/firewall in the way mikrotik does them and I think my configuration is causing the lack of email.
I can see my ports when I use a server port checking tool, however there is almost zero mail flow in or out (for some reason I can send out emails from Server 2, but not server 1, and neither can receive emails.)
The setup
I've set up a single SRCNAT-MASQUERADE - SRC ADDRESS: lan, out interface: bridge-wan
For access to the email servers I have set up DST-NAT DST address: public IP2 (and IP 3 for second email server), protocol tcp 110 (etc), in interface: bridge-wan action DST-nat