How to make two sub-networks navigate Internet with a Routerboard RB2011

Maurizio9016 · February 3, 2022, 9:42pm

Hello, I’m not a routing expert so I’am asking for your help. I have a Routerboard RB2011iL-RM and a network that is shown in the picture:
StructureForMikrotik.pdf (93.6 KB)
There are two sub-networks: 192.168.202.0/24 and 192.168.1.0/24
The gateway is the external device 192.168.2.100
I have already done a basic setup of the Routerboard and the nodes talks each other in their own sub-network.
Here is the export of the setup:

# dec/27/2021 15:37:29 by RouterOS 6.49.2
# software id = 06Y0-AYAW
#
# model = 2011iL
# serial number = 762506DAAF5D
/interface bridge
add name=bridge192_168_1_X
add name=bridge192_168_2_X
add name=bridge192_168_202_X
/interface ethernet
set [ find default-name=ether1 ] mac-address=CC:2D:E0:D4:82:04 speed=100Mbps
set [ find default-name=ether2 ] mac-address=CC:2D:E0:D4:82:05 speed=100Mbps
set [ find default-name=ether3 ] mac-address=CC:2D:E0:D4:82:06 speed=100Mbps
set [ find default-name=ether4 ] mac-address=CC:2D:E0:D4:82:07 speed=100Mbps
set [ find default-name=ether5 ] mac-address=CC:2D:E0:D4:82:08 speed=100Mbps
set [ find default-name=ether6 ] advertise=\
    10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full mac-address=\
    CC:2D:E0:D4:82:09
set [ find default-name=ether7 ] advertise=\
    10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full mac-address=\
    CC:2D:E0:D4:82:0A
set [ find default-name=ether8 ] advertise=\
    10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full mac-address=\
    CC:2D:E0:D4:82:0B
set [ find default-name=ether9 ] advertise=\
    10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full mac-address=\
    CC:2D:E0:D4:82:0C
set [ find default-name=ether10 ] advertise=\
    10M-half,10M-full,100M-half,100M-full,1000M-half,1000M-full mac-address=\
    CC:2D:E0:D4:82:0D
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp_pool0 ranges=192.168.202.130-192.168.202.160
/ip dhcp-server
add address-pool=dhcp_pool0 disabled=no interface=bridge192_168_202_X name=\
    dhcp1
/snmp community
set [ find default=yes ] addresses=0.0.0.0/0
/user group
set full policy="local,telnet,ssh,ftp,reboot,read,write,policy,test,winbox,pas\
    sword,web,sniff,sensitive,api,romon,dude,tikapp"
/interface bridge port
add bridge=bridge192_168_1_X hw=no interface=ether2
add bridge=bridge192_168_1_X hw=no interface=ether3
add bridge=bridge192_168_1_X hw=no interface=ether4
add bridge=bridge192_168_1_X hw=no interface=ether5
add bridge=bridge192_168_202_X hw=no interface=ether6
add bridge=bridge192_168_202_X hw=no interface=ether7
add bridge=bridge192_168_202_X hw=no interface=ether8
add bridge=bridge192_168_202_X hw=no interface=ether9
add bridge=bridge192_168_202_X hw=no interface=ether10
add bridge=bridge192_168_1_X hw=no interface=ether1
/ip address
add address=192.168.1.192/24 interface=ether2 network=192.168.1.0
add address=192.168.1.193/24 interface=ether3 network=192.168.1.0
add address=192.168.1.194/24 interface=ether4 network=192.168.1.0
add address=192.168.1.195/24 interface=ether5 network=192.168.1.0
add address=192.168.2.199/24 interface=ether6 network=192.168.2.0
add address=192.168.202.192/24 interface=ether7 network=192.168.202.0
add address=192.168.202.193/24 interface=ether8 network=192.168.202.0
add address=192.168.202.194/24 interface=ether9 network=192.168.202.0
add address=192.168.1.190/24 interface=bridge192_168_1_X network=192.168.1.0
add address=192.168.202.190/24 interface=bridge192_168_202_X network=\
    192.168.202.0
add address=192.168.202.195/24 interface=ether10 network=192.168.202.0
add address=192.168.202.1/24 interface=bridge192_168_202_X network=\
    192.168.202.0
add address=192.168.2.190/24 interface=bridge192_168_2_X network=192.168.2.0
add address=192.168.1.10/24 interface=bridge192_168_1_X network=192.168.1.0
/ip dhcp-client
add
/ip dhcp-server network
add address=192.168.202.0/24 gateway=192.168.202.1
/ip dns
set servers=8.8.8.8,8.8.4.4
/ip firewall address-list
add address=192.168.1.2-192.168.1.254 list=ipblock1
add address=192.168.202.1-192.168.202.254 list=ipblock1
/ip firewall nat
add action=masquerade chain=srcnat src-address-list=ipblock1
/ip route
add distance=1 gateway=192.168.2.100
add distance=1 dst-address=192.168.1.0/24 gateway=192.168.2.100
/system clock
set time-zone-name=Europe/Rome

I need to make the two sub-networks navigate in Internet. The gateway 192.168.2.100 is working perfectly, as it is the gateway for many nodes on the office network 192.168.2.0/24 that is not my business.
What is the correct setup for the Routerboard to make the sub-networks 192.168.202.0/24 and 192.168.1.0/24 navigate in Internet? It would be great to have a setup where the gateway 192.168.202.1 makes the sub-network 192.168.202.0/24 navigate, and also have the gateway 192.168.1.1 that makes the sub-network 192.168.1.0/24 navigate.
Thanks in advance. Maurizio