Hi i’m new to mikrotik’s newer devices and am trying to set up 2 to 3 networks within 1 physical network. My ISP is a student ISP so they dont allow the use of NAT although they are very fast but they verify devices via the MAC address. I am trying to set up 3 networks for my CCR1036 in order to use it with a lot of other devices, servers and local services while still having access to the internet.
The first network is for the CCR to have access to the internet and to also be able to communicate with my computer cluster. The IP address has to be given by my ISP and the mac address registered to my ISP account. I have no problems with this except that i can only register a limited number of devices with my ISP at a time.
The 2nd network is for local communication with no internet access which should be isolated from the first. I have a managed switch which can set 802.1q VLANs. The point is no traffic/broadcast from the first network can communicate with this and the CCR would control this network.
The 3rd network i want to create with the CCR is VPN. I have decided to use PPTP and i want it to communicate with my 2nd network, this is for me to access local services from internet and to host a game server but disallowing the gamers to be able to access the internet through me to prevent the upload from being saturated.
The problem i have is with the 2nd network. I have tried bridging the ports on the CCR with the VLAN interface and ip address set to that interface and it still doesnt work. On my switch i have VLAN ID 1 as untagged for all ports for network 1 and VLAN ID 3 as tagged for network 2. If ipv6 could be used for VPN this would be a much better solution since my ISP doesnt use ipv6. Nat and routing for internet is done on my ISP’s gateway. I set out 1 port from VLAN 1 and made it native to VLAN 3 but i am still unable to ping the CCR from it.
I’d appreciate advice and help on setting this up. The CCR seems impressive but the touchscreen is very difficult to scroll with. I know it is simpler to use my old 450G but it cant keep up with the internet speed for all the work and firewall i intend to use.