Dragon_Knight писал(а): ↑19 апр 2020, 18:43
В консоль: "ip f e" и вывод сюда
# apr/20/2020 18:41:10 by RouterOS 6.45.7
# software id = 9KKA-I77M
#
# model = 2011UiAS-2HnD
# serial number = 703A0540F536
/ip firewall filter
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
connection-state=established,related
add action=accept chain=forward comment="defconf: accept established,related" \
connection-state=established,related
add action=accept chain=input comment=VPN dst-port=1723 in-interface=pppoe-out1 \
protocol=tcp
add action=accept chain=input comment="Web \E4\EE\F1\F2\F3\EF \E4\EB\FF winbox" \
dst-port=80 protocol=tcp
add action=accept chain=input comment=\
"\D3\E4\E0\EB\E5\ED\ED\FB\E9 \E4\EB\FF winbox" dst-port=8291 protocol=tcp
add action=accept chain=input comment=L2TP port=1701,500,4500 protocol=udp
add action=accept chain=input comment=L2TP protocol=ipsec-esp
add action=drop chain=forward comment="defconf: drop invalid" connection-state=\
invalid
add action=drop chain=forward comment=\
"defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
connection-state=new in-interface=ether1
add action=accept chain=input protocol=icmp
add action=accept chain=input connection-state=established
add action=accept chain=input connection-state=related
add action=drop chain=input in-interface=pppoe-out1
/ip firewall nat
add action=masquerade chain=srcnat comment="defconf: masquerade" out-interface=\
pppoe-out1
add action=netmap chain=dstnat comment="\D3\E4\E0\EB\E5\ED\ED\FB\E9 \E4\EE\F1\F2\
\F3\EF \E4\EB\FF \F0\E5\E3\E8\F1\F2\F0\E0\F2\EE\F0\E0" dst-port=37800 \
protocol=tcp to-addresses=192.168.1.36 to-ports=37800
add action=dst-nat chain=dstnat dst-port=8082 in-interface=pppoe-out1 protocol=\
tcp to-addresses=192.168.1.36 to-ports=80
add action=masquerade chain=srcnat