Cannot route over EoIP tunnel on PtP link

MikeTravels · June 13, 2019, 10:00am

Hi,
I have set up an EoIP tunnel over a PtP link between 2 Disc Lite 5s.

The bridge (MikroTikA) can route to the internet (ie. ping 8.8.8.8 ), however the station (MikroTikB) cannot. Each of the devices can ping each other. Below are the configs for each:

MikroTikA
[admin@MikroTik] > /export
# jan/02/1970 00:15:28 by RouterOS 6.44.3
# software id = SAGW-5B0E
#
# model = RBDisc-5nD
# serial number = 8A79098EF0FE
/interface bridge
add name=bridge1
/interface wireless
set [ find default-name=wlan1 ] country=australia disabled=no frequency-mode=regulatory-domain mode=bridge nv2-preshared-key=domdomM1krot1k nv2-security=enabled \
    ssid=MikroTikA wireless-protocol=nv2
/interface eoip
add clamp-tcp-mss=no mac-address=02:9E:02:59:AC:78 mtu=1500 name=eoip-tunnel1 remote-address=10.8.8.2 tunnel-id=0
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/interface bridge port
add bridge=bridge1 interface=eoip-tunnel1
add bridge=bridge1 interface=ether1
/ip address
add address=10.8.8.1/30 interface=wlan1 network=10.8.8.0
add address=172.16.1.81/21 interface=bridge1 network=172.16.0.0
/ip firewall mangle
add action=set-priority chain=input new-priority=from-dscp passthrough=yes

MikroTikB
[admin@MikroTik] > /export
# jan/02/1970 00:07:09 by RouterOS 6.44.3
# software id = W7V1-RENY
#
# model = RBDisc-5nD
# serial number = 8A79091E97D6
/interface bridge
add name=bridge1
/interface wireless
set [ find default-name=wlan1 ] country=australia disabled=no frequency-mode=\
    regulatory-domain nv2-preshared-key=domdomM1krot1k nv2-security=enabled \
    ssid=MikroTikA wireless-protocol=nv2
/interface eoip
add mac-address=02:C0:65:4D:07:1F mtu=1500 name=eoip-tunnel1 remote-address=\
    10.8.8.1 tunnel-id=0
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/interface bridge port
add bridge=bridge1 interface=eoip-tunnel1
add bridge=bridge1 interface=ether1
/ip address
add address=10.8.8.2/30 interface=wlan1 network=10.8.8.0
add address=172.16.1.82/21 interface=bridge1 network=172.16.0.0
/ip firewall mangle
add action=set-priority chain=input new-priority=from-dscp passthrough=yes

I can’t figure out what I’m doing wrong. Any suggestions would be greatly appreciated.

Thanks,
Mike

sebastia · June 13, 2019, 11:09am

You need to configure default gateway on both endpionts. → where to forward non-local traffic

A note/question: why do you need ipip tunnel? You already have dedicated network between the radios: 10.8.8.1 & .2..

MikeTravels · June 13, 2019, 11:17am

Thank you very much for the response

I thought it may be something like that - I also set up a route for 0.0.0.0/0 to go out the tunnel on the station but that didn’t work - is that not correct?

I was thinking about this - I actually had second thoughts. I was following the guide posted here: https://spiderwebsolutions.com.au/point-to-point-p2p-link-mikrotik-routeros/ and now I’m thinking the EoIP is unnecessary and just makes things more complicated. I will try again without.

I actually added a PPPoE client on the bridge after this, thinking that may be the issue - should the PPPoE client be on the station instead?

Thank you

sebastia · June 13, 2019, 11:45am

default route should look like this:
forward traffic to 0.0.0.0/0 (connection destination) to (gateway), with ip being a directly connected router

so for
TikA: it needs to forward to ip of your ips appliance
TikB: needs to forward to ip of TikA 10.8.8.1

why do you need a pppoe client?