Community discussions

MikroTik App
  4. RouterOS
  5. Beginner Basics

when port is close in dst nat

Post Reply
 
pabloescobar
just joined
Topic Author
Posts: 2
Joined: Thu Sep 16, 2021 7:09 pm

when port is close in dst nat

Mon Oct 25, 2021 4:07 am

hello

beginner here, when firewall/filer drop to all the dst nat added in filter wont redirect can someone check my configuration if it correct?

(nat)
chain=dstnat action=dst-nat to-addresses=192.168.80.3 to-ports=8443
protocol=tcp in-interface=ether1 WAN dst-port=8443 log=yes log-prefix=""

(firewall/filter)
chain=forward action=accept connection-state=established,related connection-nat-state=dstnat
in-interface=ether1 WAN log=no log-prefix=""

chain=forward action=drop out-interface=ether1 WAN log=no log-prefix=""

thank you
Top
 
RhoAius
newbie
Posts: 31
Joined: Fri Jul 12, 2019 10:47 pm

Re: when port is close in dst nat

Mon Oct 25, 2021 10:27 am

You are missing the "new" connection-state.
When a packet first comes to the router its a "new" connection
Subsequent packets for that connection are "established"
Or "related" if firewall helper is used
Top
 
User avatar
karlisi
Member
Member
Posts: 438
Joined: Mon May 31, 2004 8:09 am
Location: Latvia

Re: when port is close in dst nat

Mon Oct 25, 2021 2:39 pm

Last rule drops everything coming to WAN trough router, it's like one way street. BTW, what's the purpose of this rule?
Top
 
User avatar
anav
Forum Guru
Forum Guru
Posts: 19323
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:
Contact anav

Re: when port is close in dst nat

Mon Oct 25, 2021 6:34 pm

Cannot comment accurately until one sees the config as a whole as parts are interelated.

/export hide-sensitive file=anynameyouwish
Top
Post Reply

Who is online

Users browsing this forum: No registered users and 41 guests
  4. RouterOS
  5. Beginner Basics