Re: [WISPA] Mikrotik 1 to 1 NAT question
And it probably needs to be above the global rule in the list. paul hendry wrote: You will need to add a srcnat rule for every dstnat rule you want to work. Cheers, P. Skyline Networks & Consultancy Ltd www.skyline-networks.com -Original Message- From: Don Annas [mailto:[EMAIL PROTECTED] Sent: 25 January 2007 04:52 To: wireless@wispa.org Subject: [WISPA] Mikrotik 1 to 1 NAT question I have an office router/Mikrotik that has a wan IP that is set up as a global nat to an inside private range. Additionally, we have a /27 routed to the Mikrotik and are doing 1 to 1 nat translations using dstnat for certain servers. Our problem is that while traffic can get to these devices using the alternate IP on the /27, when the devices send outbound traffic, it appears to be coming from the wan IP that is utilized for the global NAT pool instead of the IP that we are trying to translate it too. Any ideas? Thank you. Don Annas Triad Telecom, Inc. HYPERLINK "mailto:[EMAIL PROTECTED]"[EMAIL PROTECTED] -- Scott Reed Owner NewWays Wireless Networking Network Design, Installation and Administration www.nwwnet.net -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
RE: [WISPA] Mikrotik 1 to 1 NAT question
Thank you very much Paul. -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of paul hendry Sent: Thursday, January 25, 2007 4:15 AM To: wireless@wispa.org Subject: RE: [WISPA] Mikrotik 1 to 1 NAT question You will need to add a srcnat rule for every dstnat rule you want to work. Cheers, P. Skyline Networks & Consultancy Ltd www.skyline-networks.com -Original Message- From: Don Annas [mailto:[EMAIL PROTECTED] Sent: 25 January 2007 04:52 To: wireless@wispa.org Subject: [WISPA] Mikrotik 1 to 1 NAT question I have an office router/Mikrotik that has a wan IP that is set up as a global nat to an inside private range. Additionally, we have a /27 routed to the Mikrotik and are doing 1 to 1 nat translations using dstnat for certain servers. Our problem is that while traffic can get to these devices using the alternate IP on the /27, when the devices send outbound traffic, it appears to be coming from the wan IP that is utilized for the global NAT pool instead of the IP that we are trying to translate it too. Any ideas? Thank you. Don Annas Triad Telecom, Inc. HYPERLINK "mailto:[EMAIL PROTECTED]"[EMAIL PROTECTED] -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.410 / Virus Database: 268.17.8/649 - Release Date: 1/23/2007 -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ -- No virus found in this incoming message. Checked by AVG Free Edition. Version: 7.1.410 / Virus Database: 268.17.10/651 - Release Date: 1/24/2007 -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.410 / Virus Database: 268.17.10/651 - Release Date: 1/24/2007 -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
Re: [WISPA] Mikrotik 1 to 1 NAT question
Don Annas wrote: I have an office router/Mikrotik that has a wan IP that is set up as a global nat to an inside private range. Additionally, we have a /27 routed to the Mikrotik and are doing 1 to 1 nat translations using dstnat for certain servers. Our problem is that while traffic can get to these devices using the alternate IP on the /27, when the devices send outbound traffic, it appears to be coming from the wan IP that is utilized for the global NAT pool instead of the IP that we are trying to translate it too. Any ideas? You need a srcnat rule as well. Jeremy -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
RE: [WISPA] Mikrotik 1 to 1 NAT question
You will need to add a srcnat rule for every dstnat rule you want to work. Cheers, P. Skyline Networks & Consultancy Ltd www.skyline-networks.com -Original Message- From: Don Annas [mailto:[EMAIL PROTECTED] Sent: 25 January 2007 04:52 To: wireless@wispa.org Subject: [WISPA] Mikrotik 1 to 1 NAT question I have an office router/Mikrotik that has a wan IP that is set up as a global nat to an inside private range. Additionally, we have a /27 routed to the Mikrotik and are doing 1 to 1 nat translations using dstnat for certain servers. Our problem is that while traffic can get to these devices using the alternate IP on the /27, when the devices send outbound traffic, it appears to be coming from the wan IP that is utilized for the global NAT pool instead of the IP that we are trying to translate it too. Any ideas? Thank you. Don Annas Triad Telecom, Inc. HYPERLINK "mailto:[EMAIL PROTECTED]"[EMAIL PROTECTED] -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.410 / Virus Database: 268.17.8/649 - Release Date: 1/23/2007 -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/ -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
[WISPA] Mikrotik 1 to 1 NAT question
I have an office router/Mikrotik that has a wan IP that is set up as a global nat to an inside private range. Additionally, we have a /27 routed to the Mikrotik and are doing 1 to 1 nat translations using dstnat for certain servers. Our problem is that while traffic can get to these devices using the alternate IP on the /27, when the devices send outbound traffic, it appears to be coming from the wan IP that is utilized for the global NAT pool instead of the IP that we are trying to translate it too. Any ideas? Thank you. Don Annas Triad Telecom, Inc. HYPERLINK "mailto:[EMAIL PROTECTED]"[EMAIL PROTECTED] -- No virus found in this outgoing message. Checked by AVG Free Edition. Version: 7.1.410 / Virus Database: 268.17.8/649 - Release Date: 1/23/2007 -- WISPA Wireless List: wireless@wispa.org Subscribe/Unsubscribe: http://lists.wispa.org/mailman/listinfo/wireless Archives: http://lists.wispa.org/pipermail/wireless/
