I have a PUBLIC_IP/29 provided by our ISP, one of these IPs is given to the ISP router (PUBLIC_1). I have given some of these IPs to our router (RB4011, v7.18.2), one of them to srcnat general traffic, and one of them to redirect to a VM on Proxmox.
Checks done so far:
I can't see what I'm missing. Please help.
- PUBLIC_IP.65 is our ISP router
- PUBLIC_IP.67 is the one I'm trying to netmap 1:1 or dstnat to 10.190.0.12 (on ether4)
Checks done so far:
- When I ping PUBLIC_IP.67 from outside the network, with tcpdump on both machines (mine and the 10.190.0.12)
- ICMP is fine, request and replies are exchanged and seen on both
- When I try something else (http, https, ssh) nothing shows up on 10.190.0.12.
- I tried dstnat only dst port 80, I tried 80 + 443, I tried disabling srcnat from the server to keep it on the general router's address, nothing arrives to the server except ICMP.
- I even tried ping size 1024 bytes. It's ok.
- ssh telnetmyip.com correctly shows general IP or PUBLIC_IP.67 depending when dstnat rule is off or on
I can't see what I'm missing. Please help.
Statistics: Posted by axe50397 — Thu Apr 17, 2025 7:04 pm