Tak jsem to zkusil nastavit a stejně mi to nefunguje. Konfiguraci mám takto:
0 ;;; Synology - Webgui
chain=dstnat action=dst-nat to-addresses=192.168.1.2 to-ports=5000-5001 protocol=tcp in-interface=ether10 - WAN dst-port=5000-5001
1 ;;; Synology - Pyload
chain=dstnat action=dst-nat to-addresses=192.168.1.2 to-ports=7227 protocol=tcp in-interface=ether10 - WAN dst-port=8000
2 ;;; Synology - Pyload
chain=dstnat action=dst-nat to-addresses=192.168.1.2 to-ports=7227 protocol=tcp in-interface=ether10 - WAN dst-port=7227
3 ;;; Synology - Cloud
chain=dstnat action=dst-nat to-addresses=192.168.1.2 to-ports=6690 protocol=tcp in-interface=ether10 - WAN dst-port=6690
4 ;;; Synology - FTP
chain=dstnat action=dst-nat to-addresses=192.168.1.2 to-ports=20-21 protocol=tcp dst-address=90.183.250.70 dst-port=20-21
5 X ;;; Synology - SSH
chain=dstnat action=dst-nat to-addresses=192.168.1.2 to-ports=22 protocol=tcp in-interface=ether10 - WAN dst-port=22
6 ;;; default configuration
chain=srcnat action=masquerade out-interface=ether10 - WAN
7 chain=srcnat action=masquerade protocol=tcp src-address=192.168.1.0/24 dst-address=90.183.250.70 out-interface=ether10 - WAN
a Firewall takto:
0 chain=forward action=accept protocol=icmp in-interface=ether10 - WAN
1 chain=forward action=accept protocol=tcp in-interface=ether10 - WAN dst-port=80
2 chain=forward action=accept protocol=tcp in-interface=ether10 - WAN dst-port=443
3 chain=forward action=accept protocol=tcp in-interface=ether10 - WAN dst-port=21-22
4 chain=forward action=accept protocol=tcp in-interface=ether10 - WAN dst-port=5000-5001
5 chain=forward action=accept protocol=tcp in-interface=ether10 - WAN dst-port=8000
6 chain=forward action=accept protocol=tcp in-interface=ether10 - WAN dst-port=7227
7 chain=forward action=accept protocol=tcp in-interface=ether10 - WAN dst-port=6690
8 chain=forward action=accept connection-state=established in-interface=ether10 - WAN
9 chain=forward action=accept connection-state=related in-interface=ether10 - WAN
10 chain=forward action=accept out-interface=ether10 - WAN
11 chain=forward action=drop in-interface=ether10 - WAN
12 ;;; WLAN - hosts
chain=forward action=reject reject-with=icmp-network-unreachable src-address=192.168.2.0/24 dst-address=192.168.1.0/24
out-interface=!ether10 - WAN
