I think there's something fundementally wrong with me or my router.
My setup is with My Republic Broadband (Fibre) in NZ.
The setup goes ONT (Fibre box) > LAN 1 MicroTik > LAN 2 MicroTik > My Home Switch/WLAN.
I am using the quicket mode for HomeAP.
Outbound surfing is fine and My NAS Is on the Switch and i can access it from the MicroTiks Wifi.
Trying to port forward via GUI/Command line. I'd be happy just to get one port going to be honest but can't seem to have any joy.
ISP assigns an IP to me.
Microtik is 192.168.0.1
NAS is 192.168.0.20
Interface list is below
Code: Select all
Flags: D - dynamic, X - disabled, R - running, S - slave
# NAME TYPE ACTUAL-MTU L2MTU MAX-L2MTU
0 R ether1 ether 1500 1598 4074
1 RS ether2-master ether 1500 1598 4074
2 S ether3 ether 1500 1598 4074
3 S ether4 ether 1500 1598 4074
4 S ether5 ether 1500 1598 4074
5 RS wlan1 wlan 1500 1600
6 R ;;; defconf
WAN bridge 1500 1598
Export below - it's fairly vanilla apart from having added the rule at the bottom. I beleive ethern1 is my WAN interface?
Code: Select all
/ip firewall filter
add chain=input comment="defconf: accept ICMP" protocol=icmp
add chain=input comment="defconf: accept establieshed,related" \
connection-state=established,related
add action=drop chain=input comment="defconf: drop all from WAN" in-interface=\
ether1
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
connection-state=established,related
add chain=forward comment="defconf: accept established,related" \
connection-state=established,related
add action=drop chain=forward comment="defconf: drop invalid" connection-state=\
invalid
add action=drop chain=forward comment=\
"defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
connection-state=new in-interface=ether1
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" out-interface=\
ether1
add action=dst-nat chain=dstnat dst-port=5001 in-interface=ether1 log=yes \
protocol=tcp to-addresses=192.168.1.20 to-ports=5001
[admin@MikroTik] /interface>
Many thanks
S