Allow only one IP from first subnet (10.10.10.0) to communicate with second subnet (192.168.1.0)

RouterOS General
1

Here’s the problem.

Ether 1 - 192.168.1.0/24, has it’s own DHCP network etc. (office network)

Ether 6 - 10.10.10.0/24, has it’s own DHCP network etc. (restaurant network)

Communication between subnet is blocked with one firewall rule.

There is one PC (10.10.10.3) in restaurant (Ether 6 subnet), that need to communicate with our main server (192.168.1.100) in office (Ether 1 subnet).

How to allow such connection (not just to server, to whole subnet)?

Kind Regards

Bart

Block access from IP range (10.10.10.4-10.10.10.254) to an IP (10.10.10.3) or how to isolate clients in LAN subnet
2

Put a rule that accepts this traffic (single address) before the rule that blocks all other traffic between these networks.

3

Wow it was so simple. Thank you :wink: