Sunday, April 14, 2019

Help required with Port Forwarding involving a Cyberoam Firewall, MikroTik & Managed Switches within a network!

Hi r/networking, the network in my office is set up in such a way:-

1) An internet connection with a static IP is configured on a Cyberoam Firewall device.

2) On Cyberoam, a DHCP server network 192.168.60.0/24 is created on a Port. From this port, a cable is attached to the WAN port Ether1 of a MikroTik controller. IP manually assigned to Eth1 is 192.168.60.253/24.

3) On MikroTik, Ports 2-12 have been bridged. I've created a LAN network with IP range 192.168.100.0/24 on the bridge. This is for management purposes. On the bridge itself, I've created a VLAN with vlan id 10. A 172.16.0.0/16 network range DHCP server has been created on this vlan10.

4) From MikroTik, a patch cord is attached to a trunk port of an L3 Managed Core switch. One port on this core switch has been configured as a VLAN10 access port. From this port, a LAN cable goes into another managed sub-switch where all ports are untagged.

5) Any device that is connected to any port of this sub-switch will get assigned an IP belonging to the 172.16.0.0/16 range.

Here is where I'm stuck:-

My client has a server-PC which needs to be remotely accessed.

Suppose my static IP is 123.123.243.243

The IP assigned to Eth1 on MikroTik is 192.168.60.253.

The IP assigned to the server-PC is 172.16.0.80.

Any data sent to static IP 123.123.243.243 supposedly over port 8005 needs to be forwarded to 172.16.0.80.

Is port forwarding possible in this case? What port forwarding rules do I need to set through which the client will be able to remotely access this server?

Any help is appreciated! /\



No comments:

Post a Comment