Each router have one interfaces for LAN and one for WAN. We use NAT between LAN and WAN
The VRRP WAN public addresses (IPs) are a.a.a.1 for router 1, a.a.a.2 for router 2 and a.a.a.3 for the VRRP floating IP.
The Port Forwarding works fine for a.a.a.1 and a.a.a.2. But it doesn't work for a.a.a.3 (the floating IP)
BTW, I also have VRRP for LAN setup on the same routers, and it works ok (LAN subnet is b.b.b.0/24)
My NAT Firewall rules for Port Forwarding:
Code: Select all
/ip firewall nat
add action=dst-nat chain=dstnat dst-port=3389 in-interface-list=WAN protocol=tcp src-address-list=allowed_ip_list to-addresses=b.b.b.1 to-ports=3389
add action=dst-nat chain=dstnat dst-port=3390 in-interface-list=WAN protocol=tcp src-address-list=allowed_ip_list to-addresses=b.b.b.2 to-ports=3389
We need to setup Port Forwarding on the VRRP floating IP and we're stuck on this issue