Multiple WAN, block DHCP

zbuzanic · April 12, 2010, 9:36am

Diagram:

I need to block DHCP between these two Mikrotik routers (I did try to block input/output/forward ports 67-68 UDP but 192.168.0.0/24 PC’s are still getting 172.16.0.0/24) any clue about this.

Bridge PPTP tutorial I was using:
http://u.nu/42vn6

So how to block DHCP?

How to force group1 to use WAN2, and group2 WAN3 without breaking current network configuration?
At my home I have two WAN’s and I use Mangle with route-marking to force some users using WAN1 and other using WAN2.
But I’m not sure if Mangle will work with above configuration, and I have really short time to test/change configuration.

Chupaka · April 20, 2010, 11:45pm

do you have ‘use IP firewall’ enabled in Bridge settings?

zbuzanic · April 21, 2010, 1:53pm

Yes, we tried that. Even tried to apply this:

http://wiki.mikrotik.com/wiki/Bridge_Filter_-_Blocking_DHCP_Traffic

Chupaka · April 21, 2010, 9:49pm

if Mikrotik2 assigns addresses - then you should simply block 67-68/udp in forward. do you see those packets on Mikrotik1 (in Tools/Torch, for example)?

but what is your config? is your Mikrotik1 a bridge? because dhcp broadcasts should be killed by routing…