hotspot eoip bridging problem

jp1 · February 23, 2008, 8:43pm

Not sure if it’s pebkac or some other limitation, but I’d appreciate any help.

I’m trying to setup an AP to do virtual APs for two service providers (abacus and spots), bridge each of those virtual APs back to central hotspot controllers. This is so I dont have to run and maintain hotspot on every little AP that eventually gets turned up.

At the central location, each provider has a virtual machine running MT 2.9.50 level 4 for the EOIP link to the remote AP device. Hotspot is run on this EOIP link on this machine.

I was having trouble logging into an otherwise good hotspot, and figured out I could not ping over the EOIP link. I put an IP on the AP on it’s bridge interface in the same network as asssigned to the far ends EOIP interface) and got a strange ping failure: “92 byte net prohibited (3:9).”

Every MT has connection tracking on, GRE helper enabled, etc… I do have a filter setup on the hotspot controller VM to filter GRE from outside my network, but nothing is getting discarded in this according to winbox’s firewall packet stats.

Here’s a diagram.

Here’s the hotspot controller

Here’s the remote AP.

exebug · August 21, 2008, 9:44am

any ideas yet as to why it gives that strange ping reply ??

I found the same problem on one of my hotspot networks

cmit · August 21, 2008, 2:35pm

This is probably because you are using MAC addresses for the EoIP interfaces that are not from the range that’s specified in the manual (“00-00-5E-80-00-00 to 00-00-5E-FF-FF-FF”). If you use other MAC addresses, it will “mostly” work, but the strangest things can (and will) happen.
The most unfortunate thing is that WinBox will suggest MAC addresses that are NOT from that range when creating a new EoIP interface.

I’m quite confident that your problems should go away as soon as you change all EoIP interfaces’ MAC addresses.

Hope that helps!

exebug · August 22, 2008, 11:12am

Okay, just to make it a bit more interesting, i am not making use of eoip tunnels, i have a lan connection between 2 routers.

MMM MMM KKK TTTTTTTTTTT KKK
MMMM MMMM KKK TTTTTTTTTTT KKK
MMM MMMM MMM III KKK KKK RRRRRR OOOOOO TTT III KKK KKK
MMM MM MMM III KKKKK RRR RRR OOO OOO TTT III KKKKK
MMM MMM III KKK KKK RRRRRR OOO OOO TTT III KKK KKK
MMM MMM III KKK KKK RRR RRR OOOOOO TTT III KKK KKK

Terminal linux detected, using multiline input mode
[admin@blabla-Hotspot] > ping 192.168.2.254
192.168.2.254 92 byte net prohibited (3:9) time=6 ms
192.168.2.254 92 byte net prohibited (3:9) time=5 ms
192.168.2.254 92 byte net prohibited (3:9) time=2 ms
192.168.2.254 92 byte net prohibited (3:9) time=2 ms
192.168.2.254 92 byte net prohibited (3:9) time=2 ms
192.168.2.254 92 byte net prohibited (3:9) time=2 ms
192.168.2.254 92 byte net prohibited (3:9) time=2 ms
192.168.2.254 92 byte net prohibited (3:9) time=2 ms
192.168.2.254 92 byte net prohibited (3:9) time=2 ms
192.168.2.254 92 byte net prohibited (3:9) time=2 ms
10 packets transmitted, 0 packets received, 100% packet loss
[admin@blabla-Hotspot] >