Hello Guys and Girls!
A fellow member helped me out (i had “bad” NAT rules) and now i have two LAN networks which (now) cannot communicate with each other(and that was the goal).
How can i make it happen, that the 192.168.30.0/24 can see/reach 192.168.31/0 but not vice versa. Thank you in advance!
My config:
/interface bridge
add fast-forward=no name=“Bridge1(ServerNetwork)”
add fast-forward=no name=“Bridge2(ServiceNetwork)”
/interface ethernet
set [ find default-name=ether2 ] name=“LAN2(ServerNetwork)”
set [ find default-name=ether3 ] name=“LAN3(ServerNetwork)”
set [ find default-name=ether4 ] name=“LAN4(ServerNetwork)”
set [ find default-name=ether5 ] name=“LAN5(ServerNetwork)”
set [ find default-name=ether7 ] name=“LAN7(ServiceNetwork)”
set [ find default-name=ether8 ] name=“LAN8(ServiceNetwork)”
set [ find default-name=ether9 ] name=“LAN9(ServiceNetwork)”
set [ find default-name=ether10 ] name=“LAN10(ServiceNetwork)”
set [ find default-name=ether1 ] name=“WAN1(ServerNetwork)”
set [ find default-name=ether6 ] name=“WAN2(ServiceNetwork)”
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=SzervizHalozat ranges=192.168.31.10-192.168.31.254
add name=dhcp_pool2 ranges=192.168.31.6-192.168.31.254
add name=dhcp_pool3 ranges=192.168.31.6-192.168.31.254
add name=dhcp_pool4 ranges=192.168.31.6-192.168.31.254
/ip dhcp-server
add address-pool=dhcp_pool4 disabled=no interface=“Bridge2(ServiceNetwork)” name=
dhcp1
/interface bridge port
add bridge=“Bridge1(ServerNetwork)” interface=“LAN2(ServerNetwork)”
add bridge=“Bridge1(ServerNetwork)” interface=“LAN3(ServerNetwork)”
add bridge=“Bridge1(ServerNetwork)” interface=“LAN4(ServerNetwork)”
add bridge=“Bridge1(ServerNetwork)” interface=“LAN5(ServerNetwork)”
add bridge=“Bridge2(ServiceNetwork)” interface=“LAN7(ServiceNetwork)”
add bridge=“Bridge2(ServiceNetwork)” interface=“LAN8(ServiceNetwork)”
add bridge=“Bridge2(ServiceNetwork)” interface=“LAN9(ServiceNetwork)”
add bridge=“Bridge2(ServiceNetwork)” interface=“LAN10(ServiceNetwork)”
/interface bridge settings
set use-ip-firewall=yes
/ip neighbor discovery-settings
set discover-interface-list=!dynamic
/ip address
add address=192.168.30.5/24 interface=“Bridge1(ServerNetwork)” network=192.168.30.0
add address=192.168.31.5/24 interface=“Bridge2(ServiceNetwork)” network=192.168.31.0
/ip dhcp-client
add dhcp-options=hostname,clientid disabled=no interface=“WAN1(ServerNetwork)”
add dhcp-options=hostname,clientid disabled=no interface=“WAN2(ServiceNetwork)”
/ip dhcp-server network
add address=192.168.31.0/24 dns-server=192.168.31.5 gateway=192.168.31.5
/ip dns
set allow-remote-requests=yes
/ip firewall nat
add action=masquerade chain=srcnat out-interface=“WAN2(ServiceNetwork)” src-address=
192.168.31.0/24
add action=masquerade chain=srcnat out-interface=“WAN1(ServerNetwork)” src-address=
192.168.30.0/24
/system clock
set time-zone-name=Europe/Budapest