Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
Sekii2019-10-16 13:19:45
Mikrotik
Sekii, 2019-10-16 13:19:45

If address-list is specified as dns, then dstnat does not work, why?

Good afternoon.
There is a rule in NAT:
/ip firewall nat add action=netmap chain=dstnat protocol=tcp dst-port=2222 src-address-list=list to-addresses=192.168.1.1 to-port=1111
only list contains dns name , not IP. For some reason, it doesn't work like that. If you replace list with IP, then everything is ok.
Plz tell me how to fix this?
Thank you.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
P
poisons, 2019-10-16
@poisons

I see 2 options:
1. The Balts again drank Riga Balsam when assembling the firmware and broke NAT / dynamic address lists.
2. The DNS name resolves to many addresses, the router resolved it and remembered it until the TTL expired, but in fact they are breaking into you from a different ip

Similar questions
R
Roman2020-01-17 10:35:16
Whitelist docs.google or other options? 1Reply
E
erlashko2015-09-16 11:10:12
Is it possible to write a script on Mikrotik so that daily traffic of 300 MB works for all users of the network 192.168.1.0/24 with a decrease in speed to 64K? 1Reply
V
velodevil2015-09-16 15:32:37
How to let all traffic from a specific port into the l2tp tunnel on Mikrotik? 1Reply
E
elisey4742017-08-23 21:49:11
Is the vlan-header parameter ignored by mikrotik? 1Reply
I
Ilya bow2020-01-27 18:10:22
How to properly organize access to the local network of VPN clients in Mikrotik? nat what to do or how? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question