Hello guys
I have Mikrotik RB1100 and two network subnets in company:
LAN1:192.168.0.x
LAN2:192.168.100.x
I have server 192.168.100.5 and host 192.168.0.111
I need to communicate this two machines. Specifically, I need to grant access from 192.168.0.111 to port 9810 on machine 192.168.100.5.
RIght now, this machines don’t have connection between them. Of course, from Mikrotik I can PING both subnets.
Can you, please, help me to accomplish this task?
Best regards
You probably need simple firewall filter rule in forward chain, to allow desired traffic. Just source address, destination address and port, action accept and done. That’s if both machines have this router as their default gateway.
Or make sure your default gateway parameter is configured on both dhcp servers.
No DG, no inter-subnet communications.
Sent from Tapatalk
Thanks guys.
I created such a rule, but unfotunatelly, thisis not working 
Hi,
First, disable (carefully) all firewall forward rules and try pinging. If it is working, I am just guessing here, just add following two rules above of your forward rule
/ip firewall filter
add action=drop chain=forward connection-nat-state=“” connection-state=invalid
add action=accept chain=forward connection-state=established,related
Osman
Hello guys,
I am totally sorry, but I find out that machine 192.168.100.5 has gateway 192.168.100.1
So, I understand that there is another device with IP 192.168.100.1
Dose it change everything? Do I have to make firewall rule or ruting?
Best regards
Can’t have two devices with the same address, especially the router’s address. Correct that and you should be ok.
Sent from Tapatalk
Yes, that’s right.
I have two routers. One with address 192.168.0.1 and seccond 192.168.100.1
But did you change the other device with 182.168.100.1?
Sent from Tapatalk