RUT241 Remote access vs port forward, zones, traffic rules

ClaudeC · September 29, 2025, 8:25pm

Hi,

I am trying to access a device at LAN IP 192.168.3.30:1888, from the WAN. I do have a fix IP address, aa.bb.cc.dd.

There seems to be lots of places where traffic can be managed, like the Port Forward, the Zones, the Traffic Rules, NAT Rules, Static Route, and even Adminitration→Access Control

It is getting confusing which had priority over which setting!

I believe that Port Forward is required, along with Zones, but should other setting be disabled, or enabled?

Bottom live, I simpl want everything coming on WAN port 1030 (aa.bb.cc.dd:1030), to be routed to port 192.168.3.30:1888

Thanks!

Claude

stu · September 30, 2025, 10:11am

Hi,

just add a port forward at Network → Firewall → Port Forwards

If your fix IP address belongs to any private address range you have to disable “Ignore private IPs on public interface” in System → Administration → Access Control

ClaudeC · September 30, 2025, 3:07pm

I did that, and it does not work. It could be to bridge option, masquerading, … I tried using the DMZ zone, ….

One particular thing is that if I try to access from the LAN, it works, but not the cell network, mob1s1a1. So, if I am on my computer 192.168.3.50, and I try to access aa.bb.cc.ddL1030, it works, so the port forwarding is working. (My LAN is 192.168.3.xxx, the router IP is 192.168.3.1) But if I go on my personal cell, and try to access aa.bb.cc.dd:1030, which will comes throught the cell antenna to the router, instead of the LAN port, it does not work.

BTW aa is 72, so ti is a public IP address.

Are there instruction how to configure the router, all the settings: firewall, bridge, force link, Bridge interface on/off, mode (NAT,bridge, passthrough), zone (input, output, forwarding, masquerading), etc.

Things are spread all over the place.

I have used iptables in the past, and I believe that all those setting are to create the iptables which the CLI let you see. Are there instruction that relates all those settings to the iptables?

Regards,

Claude

abcd · September 30, 2025, 4:24pm

Could you share a screenshot of your actual port forwarding rule?

If the port forward rule works from LAN, that means that the device is performing NAT loopback and the rule itself is working. This would suggest that the issue is likely from the operator side. Try enabling remote access to the device WebUI and check if it’s rechable. If not, I’m guessing your operator is filtering out the incoming packets

Marija · October 3, 2025, 6:27am

Hello @ClaudeC,

Let me know if you need any additional assistance.

Best regards,

system · November 28, 2025, 8:25pm

This topic was automatically closed after 60 days. New replies are no longer allowed.