Hello!
I still have a problem, but now I don't know what the cause of the error could be. I have reset the router several times and reconfigured it. Everything worked for two days, and now neither the web nor the mail server ports are accessible from the outside. The VPN is still accessible on the server and the router, and I can also reach the router from the outside with winbox using the domain. The dynamic dns is also updated continuously.
Attached are the firewall settings. Although I don't know if that's the problem at all...
If anyone has any ideas as to what might be causing this, please share them with me!
Thank you!
I still have a problem, but now I don't know what the cause of the error could be. I have reset the router several times and reconfigured it. Everything worked for two days, and now neither the web nor the mail server ports are accessible from the outside. The VPN is still accessible on the server and the router, and I can also reach the router from the outside with winbox using the domain. The dynamic dns is also updated continuously.
Attached are the firewall settings. Although I don't know if that's the problem at all...
If anyone has any ideas as to what might be causing this, please share them with me!
Thank you!
Code:
/ip firewall filteradd action=accept chain=forward comment="port forwarding" \ connection-nat-state=dstnatadd action=accept chain=forward comment=\ "defconf: accept established,related, untracked" connection-state=\ established,related,untrackedadd action=accept chain=input comment="mikrotik ovpn" dst-port=1193 protocol=\ udpadd action=accept chain=input comment=\ "defconf: accept established,related,untracked" connection-state=\ established,related,untrackedadd action=accept chain=input comment="allow sstp" dst-port=443 protocol=tcpadd action=accept chain=input comment="WinBox Wan Administration" dst-port=\ 8291 protocol=tcpadd action=accept chain=input comment="vpn in-server binding" \ in-interface-list=ovpn-clients-groupadd action=accept chain=forward comment="vpn in-server binding2" \ in-interface-list=ovpn-clients-groupadd action=fasttrack-connection chain=forward comment="defconf: fasttrack" \ connection-state=established,related hw-offload=yesadd action=drop chain=input comment="defconf: drop invalid" connection-state=\ invalidadd action=drop chain=input comment="defconf: drop all not coming from LAN" \ in-interface-list=!LANadd action=drop chain=forward comment="defconf: drop invalid" \ connection-state=invalidadd action=drop chain=forward comment="drop all else" disabled=yes/ip firewall natadd action=masquerade chain=srcnat comment="Internet enable" out-interface=\ pppoe-out1add action=masquerade chain=srcnat comment="mikrotik vpn "add action=dst-nat chain=dstnat comment=rpi4_smtp dst-address-list=\ ordogh.dnet.hu dst-port=25 protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_webserver_http_tcp \ dst-address-list=ordogh.dnet.hu dst-port=80 protocol=tcp to-addresses=\ 192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_https_tcp dst-address-list=\ ordogh.dnet.hu dst-port=443 protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_ssh dst-address-list=\ ordogh.dnet.hu dst-port=2223 protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_ovpn_udp dst-address-list=\ ordogh.dnet.hu dst-port=1194 protocol=udp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_samba1_tcp dst-port=445 \ in-interface-list=LAN protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_samba2_udp dst-port=137-139 \ in-interface-list=LAN protocol=udp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=Rpi4_pop_ssl dst-address-list=\ ordogh.dnet.hu dst-port=995 protocol=udp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_imap_ssl dst-address-list=\ ordogh.dnet.hu dst-port=994 protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_smtp_ssl dst-address-list=\ ordogh.dnet.hu dst-port=465 protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_ispconfig dst-address-list=\ ordogh.dnet.hu dst-port=9876 protocol=tcp to-addresses=192.168.1.150 \ to-ports=8080add action=dst-nat chain=dstnat comment=rpi4_ftp dst-address-list=\ ordogh.dnet.hu dst-port=21 protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_smtp_2 dst-address-list=\ ordogh.dnet.hu dst-port=587 protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_imap dst-address-list=\ ordogh.dnet.hu dst-port=993 protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=mikrotik_ovpn_udp dst-address-list=\ ordogh.dnet.hu dst-port=1193 protocol=udp src-port="" to-addresses=\ 192.168.1.1add action=dst-nat chain=dstnat comment=rpi4_imap_2 dst-address-list=\ ordogh.dnet.hu dst-port=143 protocol=tcp to-addresses=192.168.1.150add action=dst-nat chain=dstnat comment=rpi4_pop3 dst-address-list=\ ordogh.dnet.hu dst-port=110 protocol=tcp to-addresses=192.168.1.150add action=masquerade chain=srcnat comment="HAIRPIN NAT v2" dst-address=\ 192.168.1.0/24 src-address=192.168.1.0/24Statistics: Posted by oatis — Wed Jan 15, 2025 5:31 pm