Answer the question
In order to leave comments, you need to log in
A
A
Alexander2020-02-29 18:32:00
Alexander, 2020-02-29 18:32:00
Port forwarding on Mikrotik from Public IP to cameras via L2TP. why is it not forwarding?
There are 2 Mikrotiks. 2 different points. One with a public IP and one with a gray IP.
1 point. Office 192.168.1.0/24. Nat has a rule chain=dstnat action=netmap to-addresses=192.168.20.250 protocol=tcp in-interface=ether1 dst-port=37777,80 log=yes log-prefix=""
2 point. Office 192.168.20.0/24 is worth the receiver 192.168.20.250
VPN for the test is raised to L2TP. Then I thought about transplanting to OVPN, but so far for the test it is.
Between mikrotiks, ping goes to subnets and everything between networks is visible. But if I want to get from outside, then on the second microtic in connections I see SYN-RECEIVED. From your phone.
I see firewall,info dstnat: in:ether1 out:(unknown 0), src-mac yy:yy:yy:yy:yy:yy, proto TCP (SYN), AAAA:45513->XXXX:80, len 40
I so understand that the answer from the second point the answer does not come. I don't really understand why.
Microtics RB951. Versions 6.47.1 and 6.47.7.
5 answer(s)
@stinger0
@3a4yI7aTiY
@sipgsm
W
Wexter, 2020-02-29 @stinger0
Because your traffic goes back along the default route of office 2, and this is the provider of office 2.
Either do src-nat for traffic going to 192.168.20.250 on the router in office 1, or do PBR on the router of office 2 so that all traffic coming through vpn went back to vpn
3
3a4yI7aTiY, 2020-02-29 @3a4yI7aTiY
Marking connections in the mangle so that traffic goes where it came from
S
sipgsm, 2020-03-01 @sipgsm
Will someone be able to show with screenshots how to forward a port through a VPN, something that doesn’t work on its own. Some dead end /
Similar questions
E
S
C
P
G
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question