I spent some time researching before I asked this question.
I have an old computer, with two interface cards, that I installed RouterOS on.
ether1 is currently set as a DHCP client and receives and IP address from my current DD-WRT router. That network is 192.168.10.0
ether2 is current set as a DHCP server and has the network of 192.168.200.0.
I didn’t want users behind ether2 to see devices on ether1, so I set a simple firewall rule to block any packets to the 192.168.10.0 network. This is working fine. Anything behind ether2 can get online, using the DD-WRT as the gateway, but can’t see any devices on it.
I have VPN set up on the DD-WRT box. I can VPN into it fine, and see devices on the .10 network. Of course, I can’t see anything on the 192.168.200.0 network, but I would like to be able to. For testing, I set up a VPN server on RouterOS, and assumed I could VPN into my .10 network, then VPN to my .200 network. This worked, and I could ping the RouterOS at 192.168.200.1, however, I could not ping any other device on the RouterOS .200 network.
I don’t understand static routes yet, and honestly not sure how to do this.
I would simply like to VPN and see devices on the .200 network. What’s the best way to do this?
Thanks for any advice and help.