Issue with public IP and DSL modem in bridge mode.

RouterOS Beginner Basics
1

My internet connection schema:

vDSL provider <ISP===WAN> vDSL modem Zyxel P-870HN-53b (bridge mode PTM/Bridge) <LAN1===ETH1> Mikrotik RB2011UAS (PPPoE client, interface pppoe-out1) <=NAT=> VLAN1, VLAN100, VLAN200

Issue:
I have this setup already set and Internet access from LAN vLANs working fine, unfortunately I cannot access public IP of mikrotik device from Internet (input or forward not working).

Detailed configuration:
All firewall rules disabled (for testing)

NAT:
0 ;;; default configuration
chain=srcnat action=masquerade out-interface=pppoe-out1INTERFACES:

NAME MTU ARP MASTER-PORT SWITCH

0 R DefaultLAN 1500 enabled none switch1
1 R ether1-gateway 1500 enabled none switch1

/interface pppoe-client> print
0 R name="pppoe-out1" max-mtu=1480 max-mru=1480 mrru=disabled interface=ether1-gateway user="o2" password="o2" profile=default keepalive-timeout=60
service-name="" ac-name="" add-default-route=yes default-route-distance=1 dial-on-demand=no use-peer-dns=yes allow=pap,chap,mschap1,mschap2
[admin@MikroTik] /interface pppoe-client>IP ADDRESSES:

ADDRESS NETWORK INTERFACE

0 172.16.0.129/25 172.16.0.128 VLAN200
1 192.168.0.1/24 192.168.0.0 VLAN100
2 172.16.0.1/25 172.16.0.0 VLAN1
3 D 10.226.139.143/32 88.103.200.41 pppoe-out1ROUTES:

DST-ADDRESS PREF-SRC GATEWAY DISTANCE

0 ADS 0.0.0.0/0 88.103.200.41 1
1 ADC 88.103.200.41/32 10.226.139.143 pppoe-out1 0
2 ADC 172.16.0.0/25 172.16.0.1 DefaultLAN 0
3 ADC 172.16.0.128/25 172.16.0.129 IPcam 0
4 ADC 192.168.0.0/24 192.168.0.1 PublicWIFI 0Public IP like 194.228.xxx.xxx

MODEM SETUP:
vDSL Provider O2 CZ
Mode PTM/Bridge
Vlan8021p - 0
vlanMuxId - 848...I am not sure if this issue cause by my mikrotik configuration or by DSL bridge modem. I would ask you for your opinion what can be wrong.

Thanks

2

1 ADC 88.103.200.41/32 10.226.139.143 pppoe-out1 0

This seems like a problem to me. I can’t see you have public IP setup. 10.226.139.143 is a local IP address.

3

Public IP should be also configured on pppoe interface? I hoped packets are forwarded from PublicIP to private (dynamic assigned) IP by DSL provider.

4

I would configure it only on ppoe interface.

5

If I understand your problem correctly, you are having trouble accessing your system from a remote location thru the internet, correct?

In order to log into the router, you have to have the DSL modem set as bridge mode, also make sure you have port 80 forwarded AND to make it work correctly, you should have the DSL IP set as a static from your telco, otherwise the IP will change all the time.

Then set a VPN connection on your computer that connects to the system using the IP address that is assigned from you telco.

Example: Your telco has assigned you a IP of 60.151.150.25, this will be the address that you set in the VPN properties that will allow you to connect to your system.

I have setup many of these useing the following:

So, in WinXP, go to network connections, select create a new connection, select ‘connect to the network at your work place’, then select Vitual Private network, then name this connection, (my house), then select “do not dial the intial connection”, then enter your ISP assigned IP address,then select ‘do not use smart card’, at this point click finish and you should be able to connect to your network.

Now, once connected, you open winbox and you should be able to see your router.

You can also enter the router IP/userman in your browser bar and you should be ‘talking’ to your router.

Good luck

6

Thank you for your advice. Finally issue is not mikrotik/configuration based, but my DSL provider have set NAT 1:3 for standard customers, then there is impossible forward packets from public ip to my network without extra payed public IP. Sorry for abuse forum and thank you.