Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
M
M
mozas2019-12-08 10:11:51
Iron
mozas, 2019-12-08 10:11:51

Access to local PC services from outside from the first provider, provided that all traffic goes through the second one?

Good people who know tell me pliz. I just can’t figure it out (
Mikrotik hAP ac Lite
The situation is as follows: I have static on my Mikrotik, I turned all the traffic through a friend, the same provider, he has a gray IP, they did L2TP with a default route. Everything works fine.
Because now I for nat, I needed the ability to get to my router from the outside.I
decided like this:

[email protected]] /ip firewall mangle> print
Flags: X - disabled, I - invalid, D - dynamic
3 chain=input action=mark-connection new-connection-mark=ISP1 -> Input passthrough=yes
in-interface=ether1 log=no log-prefix=""
4 chain=output action=mark-routing new-routing-mark=ISP1 passthrough=no connection-mark=ISP1 -> Input
log=no log-prefix=""

There is excellent access.
But then another problem arose, I just can’t get to the internal services of my PC.
On the PC, there is an HTTP File Srver running on port 85, sometimes I distribute files to people through it.
I rummaged through a bunch of information in the end I did this:
[
[email protected]] /ip firewall mangle> print
Flags: X - disabled, I - invalid, D - dynamic
5 chain=forward action=mark-connection new-connection-mark=in_wan1_for passthrough=yes protocol=tcp
in-interface=ether1 dst-port=85 log=no log-prefix=""
6 chain=prerouting action=mark-routing new-routing-mark=ISP1 passthrough=no connection-mark=in_wan1_for
log=no log-prefix=""

/ip firewall nat> print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade out-interface=ether1 log=no log-prefix=""
1 chain=srcnat action =masquerade out-interface=l2tp-out1 log=no log-prefix=""
3 ;;; hpfs
chain=dstnat action=dst-nat to-addresses=192.168.30.150 to-ports=85 protocol=tcp in-interface=ether1
dst-port=85 log=no log-prefix=""

I start the server on a PC, I try to log in from the phone through my external IP, in the server log I see that there is a connection, but the server itself does not open on the phone, if I wait 10 minutes it will hardly open, I will even see the files when I try to download the server in the logs Writes that the download has begun and the traffic does not go further, downloading the file on the phone is also a stake.
It seems that the input works, but the output does not.
Tell me who can, there is not enough knowledge to master (

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

4 answer(s)
Report
S
SagePtr, 2019-01-06
@SagePtr

So for this socket for 10 years, probably nothing has been released

Report
M
mozas, 2019-12-11
@mozas

Problem solved. Disconnected fasttrack connection and everything flew, internal services started working.

Report
P
poisons, 2019-12-08
@poisons

Keywords tcp mss. Smoke the dock.

Similar questions
N
NOONE2014-06-23 16:31:11
WebLogic - what book to read? (preferably in Russian)? 4Reply
T
Talyan2021-11-18 13:34:39
Is it RAID or not? 3Reply
H
Hixac2020-08-10 12:17:21
How to fix stuck on Windows 10 logo? 2Reply
K
Kingdomofcrookedmirror2021-11-20 02:30:38
Bluetooth stopped working. Icon flashing? 1Reply
K
kaiiycta2014-02-01 14:57:22
Can you explain what kind of motherboard this is? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question