My router has two internal zone, one is lan(192.168.8.0/24), another is guest(192.168.9.0/24). I created a redirect rule to let me access the internal webserver from outside, but when I set the rule I was confused with the dest option.
Here is the rule:
config redirect
option target 'DNAT'
option name 'web'
option src 'wan'
option proto 'tcp udp'
option src_dport '51980'
option dest_ip '192.168.8.208'
option dest_port '80'
option dest 'guestzone'
I can always access my webserver no matter what the dest option is, so I am not sure about the meaning of the dest option, is it useless when setting DNAT? And how can I limit the dest zone in this situation?