Im not much of a networking expert on RouterOS. Im more than fine with basic networking, but my skills diminish heavily when we start talking about routing and trying to connect two separate networks. Ive spent about 6hrs trying to make this work and just cant seem to get anywhere.
First off I have a pair of SXT ACs. I set them up originally on the same network just to get familiar. I basically followed this guide to setup the two SXT ACs to communicate without each other. https://blog.linitx.com/howto-building-building-ptp-links-mikrotik-wireless-products/
After using this method it was communicating with other just fine using Bandwidth tests, etc.
So then I went to moving it over to two separate networks and this is where it got difficult for me. I attached a picture showing my two networks. I don’t have a lot of high end equipment. The left side shows the RED network lets call it. The rectangle is my Linksys E2000 running DDWRT with its own Cable modem hooked up. So it is setup using a 192.168.1.x addresses. The Red circle is my SXT AC. Yellow lines are just wireless signal across 200meters to the right side network. That is the Orange network with its own cable modem as well and it runs off a Netgear R7000 network on the 192.168.0.x addresses.
Im trying to figure out how to setup the two SXTs. I tried to setup say the ether1 local on each of the SXTs to its local network, so the Red SXT was given a 192.168.1.50. The Orange one has a 192.168.0.50. Then I setup the two Wireless Bridge interfaces on a 10.10.1.x network. So I set the Red SXT to 10.10.1.2 and Orange SXT to 10.10.1.1. But I just cant seem to get this to work. Not sure anymore if I even have the interfaces right or bridges even right anymore.
Lastly once I was going to setup a route on each home based router as follows. So the Red router (E2000) would have a route that if it attempts to get a 192.168.0.x address it routes it to 192.168.1.50 (which is the Red SXT) and that would basically shoot it over wifi to the Orange side. And Orange side R7000 router would have a similar route but opposite such as if it tries to resolve a 192.168.1.x it routes it to its local SXT at 192.168.0.50.
I followed this one to the letter except the part where they assign the Bridge1 IPs to 172.16..81 and 172.16.1.82. As my picture shows I have a 192.168.1.x and 192.168.0.x network on each side with its own cable modem for ISP/WAN connection. So I gave them local IPs like the SXT on the RED side got a 192.168.1.50 and SXT on Orange side got a 192.168.0.50 address for the Bridge1 on each side.
However Im struggling with what to do on my DDWRT E2000 router on the RED side and what to do on the Netgear R7000 router (stock firmware) on the Orange side as far as setting up a route.
I also could not get the bandwidth tests to run even though it seems both SXTs are connected as per the signal strength on the screen and it shows its talking to it on the Quickset page.
And help would be appreciated as this is where my networking skills are not on par with the products.
So I believe I got it working. Turns out the issue was the default firewall settings on both SXTs. I just disabled all the rules and all the sudden I could talk to the 192.168.1.x network from a 192.168.0.x client/device. The settings are based on my 2nd post. So that is how its setup (using the EoIP tunnel).
Now only issue (even with the original firewall settings enabled) I was getting random issues where a device on the 192.168.0.x could get a DHCP address somehow from the 192.168.1.x side. I had the DHCP server/client/relay all disabled on the SXT. So somehow the DHCP was being broadcasted even over the EoIP tunnel and somehow the opposite network was serving it an IP (wrong side IP basically).
So I need to figure out how to fix this. Maybe just put a rule in the SXT to say block anything DHCP request related. Not exactly sure how to do that. I think I tried to say create a rule with chain=input and action=reject on anything that is a source/destination of broadcast but I think I still saw it happen (again not sure how when a DHCP is a broadcast).
I want each side’s network gateway (like the E2000 and Netgear R7000) only to serves its own devices with DHCP addresses
Firewall on bridge has huge impact on performance. You should rather route than bridge the networks so you would not need bridge firewall as the DHCP will not leak to other network.
I have a route setup on each side. On the E2000 I have a static route to send all traffic to 192.168.0.50 if the destination is 192.168.0.0. And on the R7000 I have a similar route except the opposite networks IPs. Even with these I still saw both routers serving dhcp requests from the opposite side. So the dhcp broadcast was coming across the EoIP tunnel.
Or do you mean setting up a route on the SXT itself in addition to the other two I have setup on the home routers?