Hi all,
spent to long on this simple task.
I have one lan connected up to port 2 of the mikrotik using 192.168.20.x,
and the 2nd lan connected up to port 3 of the mikrotik using 192.168.0.x,
Both networks use the mikrotik as the default gateway to surf.
Now I want to have these two networks will full access to each other,
at present I can ping accross them and I do get some connectivity but as soon as I try to browse a computer - I won’t be able to.
I will get not found or similar.
So only some ports seem to be open between ports 2 and 3 so how do I just fully open it up to each network
Tried creating a bridge but didn’t seem to do any better
The interfaces should be able to connect without any additional settings. If the ping (icmp) goes through, but web browsers (http) doesn’t, check the destination computer firewall. Will it accept http connections through the firewall? Can you connect to the localnet computers with a web browser on the same localnet?
Hi, yes I know about firewalls but no go they are turned off.
I have ping and some ports working, virus updates etc from the 2nd network but unable to browse the network or type something like \192.168.0.1
I believe it is something to do with smb windows network traffic that does not get passed.
What entries do you have in “/ip firewall nat” and “/ip firewall filter”?
Hi, actually I don’t have anything in /ip firewall nat" and "/ip firewall filter.
I was thinking that I don’t need to nat between the 2 networks - so I will just use their real ip address to access any machine.
And I don’t have any rules in ip firewall filter, I just want to let anything through from port 2 to port 3.
I just have the one masquerade rule to handle anything going out the port 1 interface to the internet - this will get natted.
Please let me know if I have this wrong
Greetings,
I have run into this myself with windows clients, it’s usually the windows firewall. The easy fix is to just turn off the firewall on the clients, they will be able to communicate with each other then. The windows firewall defaults to not accepting from outside the defined subnet, so your other network it thinks is part of the internet. You will only be able to browse by IP address unless you setup a WINS server for them all to connect to so that they can see each other. Windows only uses a broadcast to advertise in the local subnet.