Не работает проброс порта
Добавлено: 18 сен 2014, 14:44
Добрый день! Имеется mikrotik 1100AHx2, версия RouterOS 6.19, с двумя провайдерами (оба staticIP, ethernet).
ISP1 на порту ether1, ip 10.0.0.10
ISP2 на порту ether2, ip 20.0.0.20
Делаю проброс порта для каждого провайдера:
0 ;;; NAT for Exchange (ISP1)
chain=dstnat action=dst-nat to-addresses=192.168.0.66 to-ports=25
protocol=tcp dst-address=10.0.0.10 in-interface=WAN1 dst-port=25
log=no log-prefix=""
1 ;;; NAT for Exchange (ISP2)
chain=dstnat action=dst-nat to-addresses=192.168.0.66 to-ports=25
protocol=tcp dst-address=20.0.0.20 in-interface=WAN2 dst-port=25
log=no log-prefix=""
Разрешаю в Firewall Filter:
0 ;;; Allow packets for state established
chain=input action=accept connection-state=established log=no log-prefix=""
1 ;;; Allow packets for state related
chain=input action=accept connection-state=related log=no log-prefix=""
2 ;;; Drop packets for state invalid
chain=input action=drop connection-state=invalid log=no log-prefix=""
3 ;;; Allow ICMP echo request
chain=input action=accept protocol=icmp icmp-options=8:0-255 log=no log-prefix=""
4 ;;; Allow forward DNS request
chain=forward action=accept protocol=udp src-address=192.168.0.8/31 log=no log-prefix=""
5 ;;; Allow forward DNS request
chain=forward action=accept protocol=udp dst-address=192.168.0.8/31 log=no log-prefix=""
6 ;;; Allow smtp
chain=forward action=accept dst-address=192.168.0.66 log=no log-prefix=""
C первого провайдера все работает. А для второго нет. В чем может быть причина?
ISP1 на порту ether1, ip 10.0.0.10
ISP2 на порту ether2, ip 20.0.0.20
Делаю проброс порта для каждого провайдера:
0 ;;; NAT for Exchange (ISP1)
chain=dstnat action=dst-nat to-addresses=192.168.0.66 to-ports=25
protocol=tcp dst-address=10.0.0.10 in-interface=WAN1 dst-port=25
log=no log-prefix=""
1 ;;; NAT for Exchange (ISP2)
chain=dstnat action=dst-nat to-addresses=192.168.0.66 to-ports=25
protocol=tcp dst-address=20.0.0.20 in-interface=WAN2 dst-port=25
log=no log-prefix=""
Разрешаю в Firewall Filter:
0 ;;; Allow packets for state established
chain=input action=accept connection-state=established log=no log-prefix=""
1 ;;; Allow packets for state related
chain=input action=accept connection-state=related log=no log-prefix=""
2 ;;; Drop packets for state invalid
chain=input action=drop connection-state=invalid log=no log-prefix=""
3 ;;; Allow ICMP echo request
chain=input action=accept protocol=icmp icmp-options=8:0-255 log=no log-prefix=""
4 ;;; Allow forward DNS request
chain=forward action=accept protocol=udp src-address=192.168.0.8/31 log=no log-prefix=""
5 ;;; Allow forward DNS request
chain=forward action=accept protocol=udp dst-address=192.168.0.8/31 log=no log-prefix=""
6 ;;; Allow smtp
chain=forward action=accept dst-address=192.168.0.66 log=no log-prefix=""
C первого провайдера все работает. А для второго нет. В чем может быть причина?