Hi from newbie,
I have configured two interfaces. ether1 for public ip, ether2 for internal network and for dhcp.
The problem is that when I connect my notebook to ether2, I get IP from DHCPd, but I can ping just local network and ether1 public IP, but I cannot ping anything else. If I ping from mikrotik router while connected to ssh, everything works just fine, I can ping all addresses.
IP addresses:
# ADDRESS NETWORK BROADCAST INTERFACE
0 PUBLIC_IP/24 PUBLIC_IP.0 PUBLIC_IP.255 ether1
1 192.168.60.1/24 192.168.60.0 192.168.60.255 ether2
Route list:
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S 0.0.0.0/0 PUBLIC_IP_GATEWAY_IP re... 1
1 ADC PUBLIC_IP.0/24 PUBLIC_IP ether1 0
2 S PUBLIC_IP.0/24 PUBLIC_IP PUBLIC_IP_GATEWAY re... 1
3 ADC 192.168.60.0/24 192.168.60.1 ether2 0
4 S 192.168.60.0/24 192.168.60.1 ether1 reachable 1
I think there’s missing some nat rule? In BSD like systems with pf it would look like:
nat on $ether1 from $ether2:network to any → $ether1_IP
How it would look like in routeros?
I have tried something like this:
/ip firewall nat> add chain=dstnat dst-address=PUBLIC_IP action=dst-nat to-addresses=192.168.60.1
/ip firewall nat> add chain=srcnat src-address=192.168.60.1 action=src-nat to-addresses=PUBLIC_IP
But it didn’t help to me. How can I solve this problem?