Here’s a newby question in regards to configuring some routing on a mikrotik router with Time Warner fiber service..
I purchased a mikrotik routerboard 1100ah and have ether13 plugged into the fiber router, and ether12 plugged into my local network that i want to able to assign 24.153.245.2 thru 24.153.245.254 out to. I’ve never used mikrotik routers before, but i figured now would be the time to start, lol.
Here is the information provided by Time Warner:
DNS1=24.93.41.125, DNS2=24.93.41.126
I want to be able to physically access any of the 24.153.245.* addresses from the internet without any firewall. Hopefully someone can kind of give me a basic explanation of how to get the router configured to make this possible!
I’ve been playing with the settings for a while now, but haven’t had much luck in getting internet access to any computer connected to ether12 using a 24.153.245.* Ip address. I can access the mikrotik router at 24.153.244.26 (ether13) remotely, but that’s about it.
Here’s what I have configured so far.
[admin@MikroTik] > /ip address print detail
Flags: X - disabled, I - invalid, D - dynamic
0 ;;; default configuration
address=192.168.88.1/24 network=192.168.88.0 broadcast=192.168.88.255
interface=ether1 actual-interface=ether1
1 address=24.153.244.26/29 network=24.153.244.24 broadcast=24.153.244.31
interface=ether13 actual-interface=ether13
2 address=24.153.245.1/24 network=24.153.245.0 broadcast=24.153.245.255
interface=ether12 actual-interface=ether12
[admin@MikroTik] > /ip route print detail
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
0 A S dst-address=0.0.0.0/0 gateway=24.153.244.25
gateway-status=24.153.244.25 reachable ether13 distance=1 scope=30
target-scope=10
1 ADC dst-address=24.153.244.24/29 pref-src=24.153.244.26 gateway=ether13
gateway-status=ether13 reachable distance=0 scope=10
2 ADC dst-address=24.153.245.0/24 pref-src=24.153.245.1 gateway=ether12
gateway-status=ether12 reachable distance=0 scope=10
3 ADC dst-address=192.168.88.0/24 pref-src=192.168.88.1 gateway=ether1
gateway-status=ether1 reachable distance=0 scope=10
[admin@MikroTik] > /interface print
Flags: D - dynamic, X - disabled, R - running, S - slave
# NAME TYPE MTU L2MTU
0 R ether12 ether 1500 1600
1 R ether13 ether 1500 1600
2 ether11 ether 1500 1600
3 ether6 ether 1500 1598
4 ether7 ether 1500 1598
5 ether8 ether 1500 1598
6 ether9 ether 1500 1598
7 ether10 ether 1500 1598
8 R ether1 ether 1500 1598
9 ether2 ether 1500 1598
10 ether3 ether 1500 1598
11 ether4 ether 1500 1598
12 ether5 ether 1500 1598
[admin@MikroTik] > /ip firewall export
# feb/08/1970 10:38:21 by RouterOS 4.15
# software id = 1YYD-2MPF
#
/ip firewall connection tracking
set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s \
tcp-close-wait-timeout=10s tcp-established-timeout=1d \
tcp-fin-wait-timeout=10s tcp-last-ack-timeout=10s \
tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no \
tcp-time-wait-timeout=10s udp-stream-timeout=3m udp-timeout=10s
/ip firewall service-port
set ftp disabled=no ports=21
set tftp disabled=no ports=69
set irc disabled=no ports=6667
set h323 disabled=no
set sip disabled=no ports=5060,5061
set pptp disabled=no
If anyone see’s anything that I might be doing wrong, I’d greatly appreciate your help. Thanks again!!
Also, as a note, I can get internet access to a device configured as 24.153.245.100 if i turn masquerade on with src-interface ether13. However, then i am still publicly using the 24.153.244.26 ip address instead of the 24.153.245.100 address, and still don’t have access to the 245.100 address remotely.
…maybe something on Time Warner’s side is configured incorrectly?
