If there were web servers (for example, nginx) at the front, then it was possible to push the client's ip into the http header (this is when proxying).

How to set up forwarding to a web server?

Establish a tunnel between 77.77.77.1, 77.77.77.2 and 66.66.66.66 and then set up port forwarding, just as you did on 66.66.66.66.
In general, this is a rather crooked protection against ddos. For these purposes, there is a CDN.

If under port forwarding from 77.77.77.[12] on 66.66.66.66 you mean NAT, then 66.66.66.66 should already receive the correct source IP, since NAT only replaces the recipient. Accordingly, the second NAT at 66.66.66.66 will once again replace the recipient and the correct sender will arrive on 10.10.10.10.
But there might be a problem. If the route is from 77.77.77.[12] lies through a third-party router (for example, between different
DCs), then it will almost certainly drop these packets, because it will understand that their sender is fake. It is necessary either to have an agreement with the owner of this router, or not to have this router, for example, to be hosted in one DC or to raise a VPN or any other tunnel.
By the way, in the case of VPN host 66.66.66.66 is superfluous, it is enough to raise the VPN from 10.10.10.10 to 77.77.77.1 and 77.77.77.2. True, I don’t know if Mikrotik can raise a VPN.

One has to wonder what is the difference in tuning, because in fact the tuning for all microts should be the same.