16
12
I've successfully setup a port forwarding on a Mikrotik router that translates every request going to WAN ip address on port 8844 (let's say: 20.20.20.22:8844) of mikrotik to the local ip address and the same port.
As I have a DNS name for the WAN ip address (20.20.20.22), I would like this rule to also work from inner network:
192.168.111.77 -> 20.20.20.22:8844 -> 192.168.111.2:8844
I have found a Mikrotik web page that describes this situation: http://wiki.mikrotik.com/wiki/Hairpin_NAT But I wasn't able to achieve the same.
Here is a printscreen of the rule
It's just a partial printscreen but everything else is not set (blank).
EDIT: the port forwarding rule and the classic masquerade on the router looks like this:
/ip firewall nat
add chain=dstnat in-interface=ether1-gateway protocol=tcp dst-port=8844 \
action=dst-nat to-address=192.168.111.2 to-port=8844
add chain=srcnat out-interface=ether1-gateway action=masquerade
@pcunite: just tested this with RouterOS 6.24 + bridge-local and it works perfect! – lifeofguenter – 2014-12-29T19:55:25.267
@JoudicekJouda I also followed the instructions on the wiki https://wiki.mikrotik.com/wiki/Hairpin_NAT but they never said to use dst-address-type=local on the port forwarding rule rather than in-interface=ether1-gateway. Why does that make a difference, I wonder?
– Jonathan Komar – 2017-07-01T13:56:21.250I'm unable to get this to work if using a bridge. Any ideas? – pcunite – 2013-11-08T19:37:27.117