MikroTik

I have not connect to 5000 port over mikrotik.
I telnet to xx.xx.xx.xx:5000.
If I change remote service to 5001 port it's connect ok.

Why mikrotik not forward 5000 port?

On router configured src-nat.
UPnP is off.

Either you have a filter on port 5000 or some other NAT rule that catches port 5000.

If your PC is 192.168.1.2 and the Mikrotik's LAN interface is 192.168.1.1, the Mikrotik's WAN IP is 10.10.10.10, and some remote site is 20.20.20.20 ....

when you try to telnet to 5000 - which of the above IP addresses would be the address you're testing 5000 and 5001 on?

2 any networks have identity problem.
My IP is 192.168.200.8/16
Mikrotik LAN router 192.168.100.254/16


Host to telnet is 81.163.163.73 port 5000
(icmp disable.)

Half of my friends can connect, other half can not.

Why? strangely.

In firewall no rules for 5000 port or dst address.

>>>when you try to telnet to 5000 - which of the above IP addresses would be the address you're testing 5000 and 5001 on?
22.22.22.22


Sorry for my English.

2 any networks have identity problem.
My IP is 192.168.200.8/16
Mikrotik LAN router 192.168.100.254/16


Host to telnet is 81.163.163.73 port 5000
(icmp disable.)

Half of my friends can connect, other half can not.

Why? strangely.



Sorry for my English.

The /16 sounds wrong. This means that 192.168.*.* is a big, flat, single network with no routing between any two hosts having IP address starting with 192.168....... There's nothing technically wrong with this configuration, but if it's not what you expected, then that could be part of the issue, especially if the hosts are getting a netmask of 255.255.255.0 from DHCP.

Assuming that this ISN'T the problem, though, the telnet host is something out on the Internet somewhere and is not an IP address on the Mikrotik is it?

The /16 sounds wrong. This means that 192.168.*.* is a big, flat, single network with no routing between any two hosts having IP address starting with 192.168....... There's nothing technically wrong with this configuration, but if it's not what you expected, then that could be part of the issue, especially if the hosts are getting a netmask of 255.255.255.0 from DHCP.

Assuming that this ISN'T the problem, though, the telnet host is something out on the Internet somewhere and is not an IP address on the Mikrotik is it?

1. I know. But in another problem.
2.
Mikrotik router:
LAN - 192.168.34.1/24
WAN - 88.11.11.11
masquarade src-addr 192.168.34.0/24 to WAN interface

Client PC Win 7:
192.168.34.2/24
GW 192.168.34.1

Internet work perfect.

Remote host 66.66.66.66 have service on 5000 port

To test I connect telnet to 66.66.66.66 port 5000 from Client PC Win 7 - no work

tcproute.exe to 66.66.66.66 success
tcproute.exe to 66.66.66.66. port 5000 fault on Mikrotik router.

But! My friend test from remote network telnet to 66.66.66.66 5000 - it work
I test from online telnet service - it work.

Then I suggest that you double-check your filter and NAT rules, and possibly try disabling UPnP on your router to see if that helps. EDIT (I just re-read the original post and see that upnp is already off - still check the filter / nat rules for that port, though)

Then I suggest that you double-check your filter and NAT rules, and possibly try disabling UPnP on your router to see if that helps. EDIT (I just re-read the original post and see that upnp is already off - still check the filter / nat rules for that port, though)

Oops.
I connect from Debian and XP.
But NOT connect from Win 7, Win 8, from CLI in Ubiquiti router and from CLI in OpenWRT router.

May be Windows 7 and later block 5000 port? But I disable firewall & off UPnP on PC WIn 7.


And there you see tcproute to 66.66.66.66:5000 stop on Mikrotik router.

But there tcproute without port 5000 work perfect:

Then I suggest that you double-check your filter and NAT rules, and possibly try disabling UPnP on your router to see if that helps. EDIT (I just re-read the original post and see that upnp is already off - still check the filter / nat rules for that port, though)

Why Mikrotik not show connection?
Mikrotik drop this connection?

when I telnet to 5000 port, filter counter is 0


when I telnet to 23 port, filter counter > 0

The problem is solved.

The problem is solved.

What was it?

4 years ago I blocked on L2 ACL (dlink) virus ports including 5000 =)