I have 2 VLANs on a Mikrotik each with a different IP subnet, I have all routing between these subnets blocked.
I have a device on VLAN A that needs to communicate with a device on the VLAN B, however, I dont want the communication to simply go from LAN IP to LAN IP, I want them to use the respective WAN IPs for this communication. The issue I am having is when Device A connects to Device B’s WAN IP, Device B is responding to Device A’s LAN IP instead of the WAN IP. I have found that the packet is showing the source IP of Device A as the LAN IP instead of the WAN IP.
So, my question is, is there a way to have the MT force the WAN IP instead of the LAN IP?
You should do that on the PCs by adding an appropriate route to the other PC.
But it is unclear what you mean by WAN IP, in that context. Is there the Internet between the two subnets?
I was assuming both subnets are connected to the same one router.
Normally you should be glad that the original IP gets passed thru.
So, it seems you want NAT applied. But why?
You could do it also in the firewall, IMO.
If the two devices are in different subnets and you have some dst-nat rules in place, you have to add some more NAT rules, to make the packets from A to B get src-nated, so that B would see them as coming from some other IP than the real one. But depending on how the rest of your firewall is done, doing so may not be sufficient, if some filter rules match on in-interface(-list) and/or out-interface(-list). So as usually, without seeing the complete configuration, any particular advice cannot be given.
