I have a pretty huge wireless network of about 20 proxim AP2000 linked in wired and wireless way.
Now I use the mikrotik as a border router and a Nomadix machine as a wireless gateway.
But this configuration is not scalable enough so I’m lokking for PPPoE.
Can I setup another MT box doing PPPoE server, between the borde router and the APs, and at the same time have all my APs reachble using private IPs?
thanks
The simple answer is “yes”. Without more detailed knowledge of your network, I cannot give a more detailed answer.
I was wondering the same thing about putting the ap’s on a private ip’s for management and was wondering how some of you are doing this. We a have a mikrotik router as our border router, which splits our class C into two segments. One for our servers, and one for our Wireless. From there the wireless network is bridged. We would like to put all of our CPE bridges and AP’s on private ip addresses so our clients or the outside world can’t get to them. Just wondering how some of you are setting this up. Vlan or just add another ip address to the wireless side of the Mikrotik router and switch the AP’s and CPE’s to the same range? The problem with the latter is that you have to then change the laptop ip into that range in order to manage them and it is becoming a pain. Could you please give some ideas on how to accomplish this. It would be greatly appreciated.
Dan
Vlan or just add another ip address to the wireless side of the Mikrotik router and switch the AP’s and CPE’s to the same range? The problem with the latter is that you have to then change the laptop ip into that range in order to manage them and it is becoming a pain.
First, you are not correct in the assumption that you will have to change the IP on your laptop for management purpose. Let me give a scenario:
Router Wireless card:
192.168.1.1/24 (private)
64.82.82.1/24 (public)
AP: 192.168.1.2/24
Customer1: 64.82.82.2/24
Management: 64.82.82.254/24
All devices on the network will have the router wireless card as their default gateway. For the AP, that will be the private IP of the wireless card and for the customers, this will be the public. All devices on this network (customers, AP, management and router) will be able to communicate with one another. There is no need to change the IP of any of these devices to make this happen.
Thanks Butch,
That is how I had it set up but fat fingered the private ip address and put it on the wrong interface. I like the fact that you can put firewall rules in the forward chain to allow access from certain nodes on the network. Works like a charm. Thanks again.
Dan
Hmmm
Interesting Topic.
I Used to play with this scheme a year ago.
I’m not using RouterOS at that time, just a simple BERING (leaf.sourceforge.net) based system.
Loaded with : OSPF, iproute2, CBQ
At each repeater tower, I put a minimum of 3 beast :
The bering box have minimum of 2 interface
Eth0 to the CPE
Eth1 To The AP
The Eth1 + The AP is a “distribution interface”
The Eth0 + CPE is a “backbone interface” connected to a mesh wireless network.
I use this scheme act as a “last mile” provider for 4 ISP.
Very expandable
very matrix-able
sincerely
-bino-