MikroTik

Hi,
I'm a newbie of the Mikrotik's world..

I've just purchased a RouterBoard RB750, and configurated it like this:

eth1: 192.168.1.201 (it is linked to the internet)
eth2: 10.0.0.1 (i've run "HotSpot setup" wizard)

The hotspot works with an external Radius authentication.

the eth2 port is linked to an access point (ubiquiti), and i set the access point web-management on the port 81.

Now, i would like to manage the access point from the internet, and i try and try and try to configure a port forwarding on the port 81, but without good results.
I've also noticed that from the Winbox, if i try to ping anything on the 10.0.0.x net it doesn't ping.

Finally, i need to do a port forwarding like this: from any ip address (internet) (that comes from ETH1) to the ip 10.0.0.1 port 81
Can you help me?

Thanks a lot and sorry for my bad english!

PS: all the system is working fine, hotspot service, external radius authentication, etc etc

Under IP Hotspot add an IP binding for the IP address of the access point and set the type yo bypassed. From then on port forwarding should work as expected.

Having management IP addresses and customer IP space on the same network is bad practice. If the AP supports it create two VLANs on ether2, one for customers, one for management. Put the management IP on the management VLAN and put the customer VLAN on the radio. Then create the Hotspot on the customer VLAN. At that point you will not need workarounds for port forwarding, and you can use firewall filters to ensure customers don't screw with the AP.

Hi fewi,

Can you explain configuration of vlan management on mikrotik related with below..

mk.main router--bridge--mk.hotspot----ap(ssıd mapping vlan ıd 3,management vlan ıd 2)

is that need any firewall rule?

thanks....