Dear All,
I really need help with a port forwarding rule. I thought it will be easy, but reality is somewhat different...
I have the following setup:
Router A:
WAN: x.x.x.x (fixed public IP)
Local net 192.168.1.0/24
Router B
WAN: dynamic address
Local net: 192.168.2.0/24
"Target server": 192.168.2.11
I have setup IPsec and GRE on top of it to be able to route internal traffic between both routers.
I can access 192.168.2.0/24 from 192.168.1.0/24, and vice versa (icmp and tcp traffic works fine). So the IPsec and GRE part seem to be Ok.
Now, I need to make a port forwarding, so that my "target server" behind Router B is reachable from the Internet at Router A's WAN IP (x.x.x.x).
A simple dst-nat rule at Router A works perfectly fine if machines are located in Router A's local network.
But if I change the "to-address" in the dst-nat rule to be my "target server" IP (which is in Router B's network), connection simply times out.
Am I missing something obvious here?