Mikrotik Port Forwarding for web server

Hello,

I'm trying to port forward my web server so it is accesible from the internet. The server uses both 80 and 443 ports. The problem is that if I try to port forward these ports to the server's IP, the rest of the internal network can't access web pages. I suppose that happens because the router forwards all traffic on these ports to the server. What could I do to solve this problem?

Some Info:

Router: Mikrotik Routerboard RB951-2n, RouterOS version 6.4
Server Internal IP: 192.168.2.2
cbpapiAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

ded9Commented:
I think you need to make changes to the local host file so that you can access the website internally and externally.

Check this article

Check wolfeee comments

http://community.spiceworks.com/topic/219094-cannot-view-company-website-internally-but-can-see-it-externally

Or SNAT based solution

http://syneto.net/knowledgebase/how-to-access-an-internal-server-dnat-ed-using-its-external-ip-from-the-internal-network/




Ded9
0
btanExec ConsultantCommented:
I do suspect the internal clients is going through the NAT public IP hence causing internal traffic to have issue e.g. internal hairpin. they corrected the issue by adding a single src-nat rule to masquerade any traffic sourced from (internal) 192.168.1.0/24 destined to (internal) 192.168.1.0/24. @ http://gregsowell.com/?p=4242
0
cbpapiAuthor Commented:
Actually my problem is that because I port forward ports 80 and 443 to my web server, all traffic on these ports gets to the web server, so other computers in my internal network can't access web resources like google.com or facebook.com. When I type any public web address, it gets redirected to my web server (In my case 192.168.2.2).
0
Powerful Yet Easy-to-Use Network Monitoring

Identify excessive bandwidth utilization or unexpected application traffic with SolarWinds Bandwidth Analyzer Pack.

ded9Commented:
Which webserver are you using.????

I think port forwarding was not done correctly.



Ded9
0
cbpapiAuthor Commented:
I'm using an IP PBX's (Elastix) website which is based on Apache.
0
ded9Commented:
Did you enter the right ip address in the router to forward ports..




Ded9
0
cbpapiAuthor Commented:
mikrotik settings
I think I just found a solution. If I add my WAN interface in the "In. Interface" field (in this case my router is connected to my ISP's modem using PPPoE), then all the internal computers can access websites and if someone enters my public IP he gets my web server's page.

Can anyone comment on this? I don't know why or how it's working, but it is working. I hope I don't find any problems later.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
ded9Commented:
I think you have nailed the issue. ..

You can close the question if no further assistance.



Ded9
0
cbpapiAuthor Commented:
Seems to work out.
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Routers

From novice to tech pro — start learning today.