Does not pass the internal

RouterOS General
1

Personal good day, I have never had a problem with the MK and I can not solve. I have built machines that play the role of proxy and other ERP. When I try to access these machines being on the switch and if not I’m on the internet and set up a dstnat, it works normally.
Both the machine as the proxy work with ERP IP/30 totally different from the ip’s that the machines are using the switch, however, the routes are configured on the IP> Route. Anyone know what might be happening?

Thank you all.

2 
/ip address print
/ip route print
/ip firewall export

From your post I’m not sure what situation works and what doesn’t. You can access the servers from the Internet but not from the LAN, or vice versa?

3

[quote=“fewi”]

/ip address print
/ip route print
/ip firewall export

Exactly, the RB1100 with 4.1 MK routes to the server if the package comes from WAN interfaces but not do the same if and LAN. Know what can be?

Thank you.

4

Are you accessing the server by its public (NAT’d) or private IP address?

I’m guessing wildly here - please post the output of the commands I posted. A network diagram is a good start, but the actual router configuration is just as valuable to see.

5

I am accessing the private and public IP, I have access by two ways.

ip address print
 1   ;;; Sequencia 1
     172.246.200.1/30   172.246.200.0   172.246.200.3   CLT                    
 2   172.246.200.5/30   172.246.200.4   172.246.200.7   CLT                    
 3   172.246.200.9/30   172.246.200.8   172.246.200.11  CLT                    
 4   172.246.200.13/30  172.246.200.12  172.246.200.15  CLT                    
 5   172.246.200.17/30  172.246.200.16  172.246.200.19  CLT                    
 6   172.246.200.21/30  172.246.200.20  172.246.200.23  CLT                    
 7   172.246.200.25/30  172.246.200.24  172.246.200.27  CLT                    
 8   172.246.200.29/30  172.246.200.28  172.246.200.31  CLT                    
 9   172.246.200.37/30  172.246.200.36  172.246.200.39  CLT                    
10   172.246.200.41/30  172.246.200.40  172.246.200.43  CLT                    
11   172.246.200.45/30  172.246.200.44  172.246.200.47  CLT                    
12   172.246.200.49/30  172.246.200.48  172.246.200.51  CLT                    
13   172.246.200.53/30  172.246.200.52  172.246.200.55  CLT                    
14   172.246.200.57/30  172.246.200.56  172.246.200.59  CLT                    
15   172.246.200.61/30  172.246.200.60  172.246.200.63  CLT
...
192   172.30.219.25/30   172.30.219.24   172.30.219.27   ether5                (ERP)
262   10.255.255.1/30    10.255.255.0    10.255.255.3    ether4               > (PROXY)
...
326 D xxx.xxx.xxx.xxx/32  xxx.xxx.xxx.xxx 0.0.0.0         adsl_ether7          >
327 D xxx.xxx.xxx.xxx/32  xxx.xxx.xxx.xxx 0.0.0.0         adsl_ether6          >
328 D xxx.xxx.xxx.xxx/32  xxx.xxx.xxx.xxx  0.0.0.0         adsl_ether8          >




/IP ROUTE PRINT
 #      DST-ADDRESS        PREF-SRC        GATEWAY            DISTANCE
 0 A S  0.0.0.0/0                          adsl_ether7        1       
 1 X S  0.0.0.0/0                          adsl_ether6        1       
 2 X S  0.0.0.0/0                          adsl_ether7        1       
 3 X S  0.0.0.0/0                          adsl_ether8        1       
 4 A S  ;;; Link0
        0.0.0.0/0                          adsl_ether6        1       
 5 A S  ;;; Link1
        0.0.0.0/0                          adsl_ether7        1       
 6 A S  ;;; Link2
        0.0.0.0/0                          adsl_ether8        1       
 7 X S  0.0.0.0/0                          adsl_ether6        1       
 8 X S  0.0.0.0/0                          adsl_ether7        1       
 9 X S  0.0.0.0/0                          adsl_ether8        1       
10 X S  0.0.0.0/0                          adsl_ether8        1       
11 X S  0.0.0.0/0                          adsl_ether7        1       
12 A S  ;;; Link0
        0.0.0.0/0                          adsl_ether6        1       
13   S  ;;; Link1
        0.0.0.0/0                          adsl_ether7        2       
14   S  ;;; Link2
        0.0.0.0/0                          adsl_ether8        3       
15 X S  0.0.0.0/0                          adsl_ether6        1       
16 X S  0.0.0.0/0                          adsl_ether7        2       
17 X S  0.0.0.0/0                          adsl_ether8        3       
18 ADC  10.255.255.0/30    10.255.255.1    ether4             0       (PROXY)
21 ADC  172.30.219.24/30   172.30.219.25   ether5             0       (ERP)
22 ADC  172.246.200.0/30   172.246.200.1   CLT                0       
23 ADC  172.246.200.4/30   172.246.200.5   CLT                0       
24 ADC  172.246.200.8/30   172.246.200.9   CLT                0       
25 ADC  172.246.200.12/30  172.246.200.13  CLT                0       
26 ADC  172.246.200.16/30  172.246.200.17  CLT                0       
27 ADC  172.246.200.20/30  172.246.200.21  CLT                0       
28 ADC  172.246.200.24/30  172.246.200.25  CLT                0       
29 ADC  172.246.200.28/30  172.246.200.29  CLT                0       
30 ADC  172.246.200.32/30  172.246.200.33  CLT                0       
31 ADC  172.246.200.36/30  172.246.200.37  CLT                0       
32 ADC  172.246.200.40/30  172.246.200.41  CLT                0       
33 ADC  172.246.200.44/30  172.246.200.45  CLT                0       
34 ADC  172.246.200.48/30  172.246.200.49  CLT                0       
35 ADC  172.246.200.52/30  172.246.200.53  CLT                0

The firewall is disabled for all tests.

Tanks!

6

Based on that internal access should be working just fine.

Sorry, I don’t know what your problem is.

7

Thanks. I spent the same configuration that has at RB for a PC-MK and everything worked normally. The only thing the PC-MK is no bonding. If I find solution, post here for everyone.

8

I disabled bonding, and all functions were ok. Anyone know what might be happening? that the bonding “alb” I can not drive internally?