Community discussions

MUM Europe 2020

Search found 9 matches

by mark2015
Mon Jan 07, 2019 2:45 pm
Forum: RouterBOARD hardware
Topic: RB4011
Replies: 371
Views: 74824

Re: RB4011

So after reading a bit more through the forum, I was able to get it to stay stable by turning autonegation off and 1G FD... however, I had to set the same setting on the other Mikrotik router also (ie the RB2011UiAS-2HnD-IN #2). I'm having the exact same issue I have 2 Mikrotik devices. I was upgrad...
by mark2015
Mon Jan 07, 2019 2:00 pm
Forum: RouterBOARD hardware
Topic: RB4011
Replies: 371
Views: 74824

Re: RB4011

I'm having the exact same issue I have 2 Mikrotik devices. I was upgrading one device RB2011UiAS-2HnD-IN to the RB4011iGS+5HacQ2HnD-IN, and my SFP device ( S-85DLC05D ) can't keep the link/interface up as it does on the original routerboard. It's interfacing with another RB2011UiAS-2HnD-IN with anot...
by mark2015
Sat Aug 11, 2018 3:47 am
Forum: General
Topic: AWS VPC Internet Traffic over VPN
Replies: 4
Views: 764

Re: AWS VPC Internet Traffic over VPN

I've made some progress... I enabled a prerouting mangle rule to passthrough and log the packet. I see the packet in the log now as follows: prerouting mangle: prerouting: in:ether1 out:(unknown 0), src-mac <mac> proto ICMP (type 8, code 0), 10.1.0.245->8.8.8.8, len 84 however, I also setup input, f...
by mark2015
Mon Aug 06, 2018 12:54 am
Forum: General
Topic: AWS VPC Internet Traffic over VPN
Replies: 4
Views: 764

Re: AWS VPC Internet Traffic over VPN

Bumping this up. So I've been trying to debug this using firewall rules (both on the nat and filter side) and I cannot see/log any traffic originating from the VPC that is destined for internet (ie curl google.com); however, I can see traffic pinging my LAN servers. Any recommendations on how to app...
by mark2015
Fri Jul 06, 2018 6:20 pm
Forum: General
Topic: AWS VPC Internet Traffic over VPN
Replies: 4
Views: 764

Re: AWS VPC Internet Traffic over VPN

You need to do NAT Masq rule or source nat on your Mikrotik router of LAN network of your VPC server. After tunnel establish, just add static route to LAN address on other side of Tik. Tik will NAT local network of your VPC and forward VPC packets to Internet. That what I think I currently have. To...
by mark2015
Thu Jul 05, 2018 11:19 pm
Forum: General
Topic: AWS VPC Internet Traffic over VPN
Replies: 4
Views: 764

AWS VPC Internet Traffic over VPN

I have a VPN established between my VPC and my Mikrotik router. I am able to connect to my servers and am able to communicate from my servers back to my local network. What I want to do now is make all the traffic in the VPC route through my Mikrotik router (instead of setting up a NAT in the VPC). ...
by mark2015
Mon Oct 09, 2017 1:28 am
Forum: General
Topic: Amazon AWS VPN -- A Working Configuration Example and Bug
Replies: 40
Views: 29420

Re: Amazon AWS VPN -- A Working Configuration Example and Bug

I have created a simple parameterized script to help with this whole process. All you need to do is populate the local vars at the top of the script. The first two vars are specified in CIDR, and all the other vars are just IPs :local awsVpcCidr :local onPremCidr :local tunnelOneInsideIPVirtualPriva...
by mark2015
Tue Apr 18, 2017 9:57 pm
Forum: General
Topic: Amazon AWS VPN -- A Working Configuration Example and Bug
Replies: 40
Views: 29420

Re: Amazon AWS VPN -- A Working Configuration Example and Bug

I have setup a VPN from my Mikrotik router to my AWS VPC as per instruction above (and oddly enough have gotten it work previously). Today however it is not working. I cannot get a full round ping to work from either AWS->myHost or myHost->AWS. When pinging from AWS->myHost I see that packets are hi...
by mark2015
Sat Oct 17, 2015 11:16 pm
Forum: General
Topic: Amazon AWS VPN -- A Working Configuration Example and Bug
Replies: 40
Views: 29420

Re: Amazon AWS VPN -- A Working Configuration Example and Bug

I followed all the steps; however, I still cannot ping over the tunnel. AWS says the tunnel are up and everything looks ok from my side. It even seems like the ICMP packet goes out, but nothing ever comes back, and this is from both sides. I can try to ping from AWS to my local network and the route...