Hi All,
Please refer to title / attached sample.
Setup →
[ /ip address export ]
add address=192.0.2.6/30 interface=ether1 network=192.0.2.4
add address=10.10.10.1/24 interface=ether2 network=10.10.10.0
add address=10.10.10.2 interface=ether2 network=10.10.10.2
add address=192.0.2.9/30 interface=ether2 network=192.0.2.8
[ /ip route export ]
add distance=1 gateway=192.0.2.5
[ /ip firewall nat export ]
add action=masquerade chain=srcnat out-interface-list=WAN (Equivalent to ether1)
[ Question 1 ] how do I Manually set things up to [ip forward] as needed, given that [IP->Settings->IP Forward=OFF] ? (so i need an example to manually simulate [IP->Settings->IP Forward=ON] )
==================
[ Question 2 ] test pc connected to Device=[ether2] having IP=[10.10.10.10] Subnet=[255.255.255.0] Gateway=[10.10.10.1] →
a) pinging to 192.0.2.9 is still possible - how can i prevent automatic forwarding internally like this ?
b) pinging to 192.0.2.6 is still possible - how can i prevent automatic forwarding internally like this ?
c) pinging to 192.0.2.5 (gateway) - not possible (as it should be)
Thanks in advance