LTE Passthrough & UDR

RouterOS Beginner Basics
1

Hi everyone!

I’d define myself as intermidiate network administrator :wink:
What I meant was i’m not an expert by no means - I just have some knowledge, but in this case it seems to be to little :wink:

SETUP:
Public IP from T-mobile ↔ Mikrotik LHGGM&EG18-EA ↔ Ubiquiti Dream Router ↔ PC’s and Mac’s connected through WiFi or Ethernet to 1-4 ports in UDR.

GOALS:

  1. Set Mikrotik LHGGM as transparent bridge so Ubiquiti Dream Router manages all the routing, traffic, networks, WiFi’s etc.
  2. Allow LAN and WAN ports to access Mikrotik by IP.

SUCCESSES AND FAILURES

  1. In LTE APNs I set Passthrough and it works well - whatever I connect to ether1 get’s public IP and Mikrotik is transparent in that case.
  2. I also set 192.168.88.1/24 address and added it to the bridge.
  3. When I set the IP on either PC. MAC or UDR to local to 192.168.88.2/24 I’m able to access LHGGM. If I get IP using DHCP I’m getting public IP from Mikrotik.
  4. I tried to use VLAN to allow IP traffic between LHGGM and UDR, but with no success. Also played with VLANs and other network settings on UDR, but with no luck too.

QUESTIONS, DOUBTS, CONSIDERATIONS

  1. Is it possible to combine passthrough and the ability to access LHGGM by IP?
  2. I don’t want to be double-NATed.
  3. If point 1 is not achievable, what are the other methods to get where I want to get?

BOTTOM LINE
I love Mikrotik for it’s ubuquitious configuration options but also love Ubiquiti for their state of art UX. Combining these worlds it’s a little bit awkward for me however :wink:
Hope You guys can help me!

2

Hi

Here’s configuration i make to achieve what you want :

MIKROTIK LHGG (reset with no configuration)

/interface lte apn
set [ find default=yes ] apn=(your APN) ip-type=ipv4 passthrough-interface=ether1 passthrough-mac=auto use-network-apn=
no use-peer-dns=no

/interface vlan
add interface=ether1 name=management vlan-id=10

/ip dhcp-client
add interface=management


Ubiquity side (don’t know how it works with ubiquity, then here’s an example with mikrotik router) :

/ip dhcp-client
add interface=ether1 use-peer-dns=no

/interface vlan
add interface=ether1 name=management vlan-id=10

/interface bridge port (DHCP server is on the bridge)
add bridge=bridge1 interface=management

Then LHGG get ip via “management vlan” from dhcp server of ubiquity

3

I think on most Ubiquity stuff it might be easier to do it reverse. e.g. use vlan10 as the passthrough interface & leaving the untagged ether1 + dhcp-client

AFIAK, UBNT stuff uses hybrid ports by default with untagged being management. And, I think, it might be easier to configure the WAN from a VLAN (i.e. vlan10 from LHGG) on UBNT side. All depends on what UBNT stuff, but the passthrough LTE being a VLAN make it easier to manage too since you can just use a normal laptop on the port (vs if management is on a VLAN).