de portforward is wel degelijk ok Dubbele nat ? Mijn bridging is very basic op routerOS. Heb daar ook niets van NAT opstaan De router heeft een ip 192.168.0.98 ( zelfde subnet als modem ) meer is daar ook niet ingesteld Ik wil herust hier de config neerzetten staat toch niets specifiek in ( heb het gehide ) ; maar goed dit is RouterOS specifiek /interface bridge add admin-mac=2C:C8:1B:D2:AC:34 auto-mac=no comment=defconf name=bridge1 /interface ethernet set [ find default-name=ether1 ] arp=proxy-arp mac-address=2C:C8:1B:D2:AC:33 set [ find default-name=ether2 ] mac-address=2C:C8:1B:D2:AC:34 /interface wireless security-profiles set [ find default=yes ] authentication-types=wpa2-psk mode=dynamic-keys supplicant-identity=MikroTik wpa-pre-shared-key=x wpa2-pre-shared-key=x add authentication-types=wpa2-psk group-key-update=1h mode=dynamic-keys name=5GHZ supplicant-identity="" wpa-pre-shared-key=x wpa2-pre-shared-key=x /interface wireless set [ find default-name=wlan1 ] amsdu-limit=4096 amsdu-threshold=4096 band=2ghz-onlyn country=belgium disabled=no disconnect-timeout=10s installation=outdoor mode=ap-bridge security-profile=5GHZ \ ssid=Terras-2Ghz-Rob wireless-protocol=802.11 wmm-support=enabled wps-mode=disabled set [ find default-name=wlan2 ] amsdu-limit=4096 amsdu-threshold=4096 band=5ghz-n/ac country=belgium disabled=no disconnect-timeout=4s frequency=5260 installation=indoor mode=ap-bridge \ security-profile=5GHZ ssid=Terras-5Ghz-Rob wireless-protocol=802.11 wmm-support=enabled wps-mode=disabled /ip pool add name=OVPN ranges=192.168.0.55-192.168.0.60 /ppp profile add local-address=192.168.0.98 name=VPN_Profile remote-address=OVPN set *FFFFFFFE local-address=192.168.0.98 remote-address=192.168.0.57 /interface bridge port add bridge=bridge1 comment=defconf interface=ether2 add bridge=bridge1 comment=defconf interface=wlan1 add bridge=bridge1 comment=defconf interface=wlan2 add bridge=bridge1 interface=ether1 /ip firewall connection tracking set generic-timeout=0ms icmp-timeout=0ms loose-tcp-tracking=no tcp-close-timeout=0ms tcp-close-wait-timeout=0ms tcp-established-timeout=0ms tcp-fin-wait-timeout=0ms tcp-last-ack-timeout=0ms \ tcp-max-retrans-timeout=0ms tcp-syn-received-timeout=0ms tcp-syn-sent-timeout=0ms tcp-time-wait-timeout=0ms tcp-unacked-timeout=0ms udp-stream-timeout=0ms udp-timeout=0ms /ip settings set accept-redirects=yes accept-source-route=yes /interface detect-internet set detect-interface-list=all /interface l2tp-server server set ipsec-secret=x use-ipsec=required /interface ovpn-server server set auth=sha1 certificate=Server cipher=aes256 default-profile=default-encryption enabled=yes require-client-certificate=yes /ip address add address=192.168.0.98/24 comment=defconf interface=bridge1 network=192.168.0.0 add address=192.168.0.230 disabled=yes interface=ether1 network=192.168.0.230 /ip firewall filter add action=accept chain=input dst-port=98 protocol=tcp add action=accept chain=input dst-port=1194 protocol=tcp add action=accept chain=input dst-port=8291 protocol=tcp /ip firewall nat add action=accept chain=srcnat dst-address=192.168.0.98 protocol=tcp src-address=x.x.x.x(telenet wan ) add action=accept chain=dstnat disabled=yes dst-address=192.168.0.98 src-address=0.0.0.0 /ip service set telnet disabled=yes set ftp disabled=yes set www port=98 set ssh disabled=yes set www-ssl disabled=no port=4443 set api disabled=yes set api-ssl disabled=yes /ip upnp set enabled=yes /ppp secret add local-address=192.168.0.98 name=x password=xxx remote-address=192.168.0.56 service=ovpn /system clock set time-zone-name=Europe/Brussels /system logging set 0 topics=info,debug set 2 topics=warning,debug add prefix=Wifi topics=wireless,debug add topics=dhcp add prefix=vpn topics=ovpn add prefix=firewall topics=firewall add prefix=watchdog topics=watchdog add topics=warning add prefix=system topics=system /system script add dont-require-permissions=no name=disable owner=xx policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon source="Interface wireless disable wlan1" add dont-require-permissions=no name=Enable owner=xx policy=ftp,reboot,read,write,policy,test,password,sniff,sensitive,romon source="Interface wireless enable wlan1"
... Meer weergeven