thanks sindy !
Issue was on Juniper. ISP confirmed that minor issues was on it and now all resolved.

This should not be mistype. I copy and paste IP to be sure. I suppose that here in posts I make an error. Juniper is under suspect. I played with bridge(enable RSTP, disable all ports except 1) now src-nat is working, dst does not. I return everything back to previous state(when dst work), nothing c...

want lan client to access internet ip service which host on lan VM?

you should use Hairpin NAT by masquerade action to change lan to lan packets.

see https://help.mikrotik.com/docs/display/ROS/NAT, Hairpin NAT.

No, I ping google DNS it hosted externally

It shows only packets from host, but do not show return packet I added to switch rule to copy packets from port ether3, but this does not help. At the same time torch sows return packets. INTERFACE TIME NUM DIR SRC-MAC DST-MAC VLAN SRC-ADDRESS DST-ADDRESS PROTOCOL SIZE CPU FP ether3 23.306 53 <- 00:...

I added current config export. Maybe someone is able to help me.

Do you try to use address list? You can add list with destination IPs and it would be 1 rule.

No, it is not. I have 3 rules in src-nat chain. They have different source - 192.168.9.0/24, but they behave similar. If I setup action masquerade, all rules works fine. If I setup src-nat they do not( does not depend on address, I try different - 26, 29, 27). All Ips on router and on VMs are static...

Hello! I have wired issue. I have RB3011UAS with 6.49.6 firmware running on it. From my ISP I have network with 8IPs - XX.102.XX.24/29; Router has IP 26 on ethernet1 and it connected to ISP. I have a server. It runs VMWare with 3 VMs. All VMs are in network 192.168.10.0/24. Server connected to Route...

I have the same issue. hAP lite with default config -load 100%, without config - load 100%.
Can anyone help to resolve this ?

Good day everyone! I faced with misunderstanding of VLAN on RB3011. I have following setup: RB3011 - core router and in it I connected internet on port1. Ports 3,4,6,7 ports from Server1 (ESXi). This ports are trunk. Ports 8,9 are ports from Server 2 (ESXi). This ports are hybrid. I configured 4 vla...

Hello, I have RB750. Installed fw 6.41.4 OS - 6.41.4. I have following connections - 1. Internet link, 2 - VPN -link, 3- tech link, 4 - LAN link, 5- AP-link(at AP I have 2 SSID - 1 for internet, 2nd for LAN). According this I added IP addresses and 2 VLANs(for AP link). To make AP management I added...