Access bridged GPON modem

mikegleasonjr · November 2, 2018, 4:23pm

Hi, my Mikrotik (bridge ip 192.168.2.1) is sitting behind a GPON (ether1 → port1) which has its port 1 in bridge mode. Which means the VLAN and PPPoE is configured by my mikrotik router and everything is fine.

The remaining ports of the GPON are in routed mode. The GPON has the LAN ip to 192.168.1.1. If I want to have access to the bridged GPON, I have to put a cable in port2, and configure my computer to have 192.168.1.2 and then I can access the GPON web ui.

Long story short, I can’t access 192.168.1.1 (bridged GPON) from the Mikrotik LAN.

Is there a way to be able to access it ? I tried to put a cable from a Mikrotik port to port 2 of the GPON. I can ping 192.168.1.1 from the Mikrotik but not from my computer on the LAN.

Do I have really have to have a second wire connecting both to access the internal LAN on the GPON from the bridge?

Thanks

mkx · November 2, 2018, 7:58pm

It really depends on how the GPON CPE can be configured. If you can make its port1 both bridged and routed[*], then you can configure RB so that you’ll be able to access GPON CPE from your LAN.

[*] dual mode is not unheard of. I gave a xDSL modem which is configured to bridge mode so that PPPoE client runs on my RB. Never the less, xDSL modem still has all ports configured in a bridge with internal address configured (e.g. 192.168.1.1). So ih have PPPoE client bound to e.g. ether1 but also IP address from xDSL modem’s subnet … and RB being default gateway for my LAN hosts then allows access to xDSL modem’s Web UI from all LAN hosts.

mikegleasonjr · November 3, 2018, 10:41am

So I tried to plug a second wire between the two (ether4 mkt to port2 (routed) of the GPON.

I don’t know what I have to do. I added a static IP on the mkt on the ether4 to be on the same subnet as the GPON. I am able to ping the GPON from the mkt interface, but not from the clients on the lan. Do I have to remove ether4 from the bridge? I have the default config more or less.

Thank you!

mkx · November 3, 2018, 12:10pm

The right thing to do is to remove ether4 (wire connection towards GPON) from the bridge and set IP address directly on ether4 interface.

Probably it could be done without removing ether4 from bridge, but it’s tricky and in your case it doesn’t bring any benefit.

mikegleasonjr · November 3, 2018, 3:31pm

So how can I access http://192.168.1.1 from the mkt lan?

mkx · November 3, 2018, 4:02pm

If mikrotik is configured properly, it should “just work”.

You can export configuration and post it here so we can check if there’s something to improve. Connect to mikrotik via CLI and run command /exoort hide-sensitive. Paste result in code block ( at the beginning of third formating items block at the top of input field when posting a reply).