Hello all.. I need to set up an scenario with 2 mk. like this:
Wan: RB2011
Local(lan): CRS326 (vpn,dhcp,lan)
RB2011
eth1: wan1 public static IP
eth2: wan2 public static IP
eth3:LAN 1.1.1.1/30
CCR326 (al services: VPN, DHCP,DNS etc)
eth1:LAN : 1.1.2.1/24 —> server
eth2:LAN2: 1.1.3.1/24—>users
eth3:1.1.1.2/30
Config
I wan to isolate the rb2011 just to work like a WAN router. Then forward all to CCR326. I want to access to some server connected to LAN and services like VPN on router CCR326(better performance).
My configuration was:
RB2011
Route
0.0.0.0/0 gw WAN2
0.0.0.0/0 gw WAN1
10.1.2.1/24 gw 10.1.1.2
10.1.3.1/24 gw 10.1.1.2
CCR326
0.0.0.0 gw 10.1.1.1
Everything about internet work.
My problem was, cant forward(VPN, is possible?) anything to the CCR326 or server on the LAN. On the dsn-nat (WAN rb2011)i dont see any package incomming when i try to connect to the servers from internet.
What im doing wrong? this is the way to go or is better to config the CCR326 on Eth3 a WAN interface?
Thanks!!