NAT setup Questions
Posted: Thu Jun 25, 2009 8:14 am
I've made some progress.
Ether1 is my public interface and is plugged into the cable modem.
Dhcp-client gets the public ip from comcast.
The remaining Ethernet ports are all ports on Bridge1.
Bridge1 has been assigned the private ip 192.168.1.1/24.
Dhcp server is handing out ip numbers for the private from
a pool within 192.168.1.0/24
Did all the above and some other misc configuration from the console.
Did the initial firewall/nat setup from WebBox.
So far so good. hosts are able to connect to the internet
from the private the internal network.
Now the puzzle. Setting up some some rules to allow incoming connections from
the internet. Pretty sure I understand the DDNS stuff so remote hosts can figure
out our public ip, but I have not yet set that up.
I want incoming connections to the public ip on port 20010 to connect to port 22
on 192.168.1.10, port 20011 to connect to port 22 on 192.168.1.11, etc.
I can easily do this by populating a simple table on many gui based routers,
and using the command line using iptables on a standard linux box.
But the MikroTik documentation is not very clear, and I can't find any examples for this situation. I'm sure it's trivial, an example would be very helpful.
Ether1 is my public interface and is plugged into the cable modem.
Dhcp-client gets the public ip from comcast.
The remaining Ethernet ports are all ports on Bridge1.
Bridge1 has been assigned the private ip 192.168.1.1/24.
Dhcp server is handing out ip numbers for the private from
a pool within 192.168.1.0/24
Did all the above and some other misc configuration from the console.
Did the initial firewall/nat setup from WebBox.
So far so good. hosts are able to connect to the internet
from the private the internal network.
Now the puzzle. Setting up some some rules to allow incoming connections from
the internet. Pretty sure I understand the DDNS stuff so remote hosts can figure
out our public ip, but I have not yet set that up.
I want incoming connections to the public ip on port 20010 to connect to port 22
on 192.168.1.10, port 20011 to connect to port 22 on 192.168.1.11, etc.
I can easily do this by populating a simple table on many gui based routers,
and using the command line using iptables on a standard linux box.
But the MikroTik documentation is not very clear, and I can't find any examples for this situation. I'm sure it's trivial, an example would be very helpful.