My modem from the ISP is on passthrough mode because I have a /29 static public IP block.
So my Port 1 WAN port is my public static IP.
My current config is below; I'm certain I'm just overlooking something.
Appreciate any assistance.
Code: Select all
# mar/10/2023 22:32:52 by RouterOS 7.8
# software id = 58XR-BMWS
#
# model = RB3011UiAS
/interface bridge
add ingress-filtering=no name=loopback vlan-filtering=yes
/interface ethernet
set [ find default-name=ether1 ] name=WAN
set [ find default-name=sfp1 ] disabled=yes
/interface vlan
add interface=ether6 name=vlan1 vlan-id=6
/ip pool
add name="LAN Pool" ranges=192.168.1.2-192.168.1.254
/ip dhcp-server
add address-pool="LAN Pool" interface=loopback name="LAN DHCP"
/port
set 0 name=serial0
/interface bridge port
add bridge=loopback interface=ether2
add bridge=loopback interface=ether3
add bridge=loopback interface=ether4
add bridge=loopback interface=ether5
add bridge=loopback interface=ether6
add bridge=loopback interface=ether7
add bridge=loopback interface=ether8
add bridge=loopback interface=ether9
add bridge=loopback interface=ether10
add bridge=loopback disabled=yes interface=all
/interface bridge vlan
add bridge=loopback untagged=ether6 vlan-ids=6
/ip address
add address=192.168.1.1/24 interface=loopback network=192.168.1.0
add address=111.22.33.44/29 interface=WAN network=111.22.33.44
/ip dhcp-server config
set store-leases-disk=10m
/ip dhcp-server network
add address=192.168.1.0/24 dns-server=1.1.1.1,8.8.8.8,9.9.9.9 gateway=\
192.168.1.1
/ip dns
set servers=1.1.1.1,8.8.8.8,9.9.9.9
/ip firewall nat
add action=masquerade chain=srcnat out-interface=WAN
add action=masquerade chain=srcnat dst-address=192.168.1.0/24 src-address=\
192.168.1.0/24
add action=dst-nat chain=dstnat disabled=yes dst-address=104.59.23.105 \
dst-port=9186 protocol=tcp to-addresses=192.168.1.82
add action=dst-nat chain=dstnat dst-address=!111.22.33.44 dst-address-type=\
local dst-port=9186 protocol=tcp to-addresses=192.168.1.82
/ip firewall service-port
set ftp disabled=yes
set tftp disabled=yes
/ip route
add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=111.22.33.44 \
pref-src="" routing-table=main scope=30 suppress-hw-offload=no \
target-scope=10
/ip upnp
set allow-disable-external-interface=yes enabled=yes
/ip upnp interfaces
add interface=WAN type=external
add interface=loopback type=internal
/system clock
set time-zone-name=America/Chicago
/system identity
set name=Core