Sample NAT rule for customer;
Code: Select all
/ip firewall nat
add action=jump chain=srcnat jump-target=CGN64_9 out-interface=VL_46-CORE src-address=100.64.3.2-100.64.3.63
add action=src-nat chain=CGN64_9-4 out-interface=VL_46-CORE protocol=tcp src-address=100.64.3.35 to-addresses=X.X.X.X to-ports=35792-36815
add action=src-nat chain=CGN64_9-4 out-interface=VL_46-CORE protocol=udp src-address=100.64.3.35 to-addresses=X.X.X.X to-ports=35792-36815
add action=src-nat chain=srcnat out-interface=VL_46-CORE protocol=gre src-address=100.64.3.2-100.64.3.63 to-addresses=X.X.X.X
But still, user cannot establish PPTP connection. Is there anything else I should add? My temporary solution is to give them a public IP.
Thanks in advance!