No LAN 2 WAN connection(s), what am I missing?

wiggammy · June 23, 2014, 8:07pm

Hi guys,

I can't figure out anymore what I'm doing wrong or what I've misconfigured in my RB2011. When I plug my ISP connection into port Eth-1 and my laptop into another port, I can't ping or connect to any website... Hopefully you can help me out on this one, thanks in advance.

Here's my config....

jun/25/2014 14:34:40 by RouterOS 6.15

software id = N34L-G850

/interface bridge
add admin-mac=xx:xx:xx:xx:xx:xx auto-mac=no l2mtu=1598 name=bridge-local
/interface ethernet
set [ find default-name=ether1 ] name=ether1_ISP rx-flow-control=auto tx-flow-control=auto
set [ find default-name=ether6 ] name=ether6-master-local
set [ find default-name=ether7 ] master-port=ether6-master-local name=ether7-slave-local
set [ find default-name=ether8 ] master-port=ether6-master-local name=ether8-slave-local
set [ find default-name=ether9 ] master-port=ether6-master-local name=ether9-slave-local
set [ find default-name=ether10 ] master-port=ether6-master-local name=ether10-slave-local
set [ find default-name=sfp1 ] name=sfp1-gateway
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g/n channel-width=20/40mhz-Ce country=netherlands disabled=no distance=indoors frequency=2422 frequency-mode=regulatory-domain l2mtu=1600 mode=ap-bridge ssid=***********
/ip neighbor discovery
set sfp1-gateway discover=no
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk group-ciphers=tkip,aes-ccm mode=dynamic-keys supplicant-identity=MikroTik unicast-ciphers=tkip,aes-ccm
/ip hotspot user profile
set [ find default=yes ] idle-timeout=none keepalive-timeout=2m mac-cookie-timeout=3d
/port
set 0 name=serial0
/interface bridge port
add bridge=bridge-local interface=ether2
add bridge=bridge-local interface=ether3
add bridge=bridge-local interface=ether4
add bridge=bridge-local interface=ether5
add bridge=bridge-local interface=ether6-master-local
add bridge=bridge-local interface=wlan1
add bridge=bridge-local interface=sfp1-gateway
/ip address
add address=88.89.90.91/23 comment=ISP interface=ether1_ISP network=88.89.90.0
add address=192.168.1.254/24 comment=LAN interface=bridge-local network=192.168.61.0
/ip dns
set allow-remote-requests=yes servers=8.8.8.8
/ip firewall filter
add chain=input comment="Accept established connections" connection-state=established
add chain=input comment="Accept related connections" connection-state=related
add action=drop chain=input comment="Drop invalid connections" connection-state=invalid disabled=yes
add chain=input comment=UDP protocol=udp
add chain=input comment="Allow limited pings" limit=50/5s,2 protocol=icmp
add action=drop chain=input comment="Drop excess pings" disabled=yes protocol=icmp
add chain=input comment="SSH for secure shell" dst-port=22 protocol=tcp
add chain=input comment=winbox dst-port=8291 protocol=tcp
add chain=input comment="From ISP" src-address=88.89.90.0/23
add chain=input comment="From LAN" src-address=192.168.1.0/24
add action=log chain=input comment="Log everything else" log-prefix="DROP INPUT"
add action=drop chain=input comment="Drop everything else" disabled=yes
/ip firewall nat
add action=masquerade chain=scrnat out-interface=ether1_ISP
/ip route
add distance=1 gateway=88.89.91.254
/ip upnp
set allow-disable-external-interface=no
/lcd
set backlight-timeout=5m default-screen=informative-slideshow
/lcd interface
set sfp1-gateway interface=sfp1-gateway
set ether1_ISP interface=ether1_ISP
set ether2 interface=ether2
set ether3 interface=ether3
set ether4 interface=ether4
set ether5 interface=ether5
set ether6-master-local interface=ether6-master-local
set ether7-slave-local interface=ether7-slave-local
set ether8-slave-local interface=ether8-slave-local
set ether9-slave-local interface=ether9-slave-local
set ether10-slave-local interface=ether10-slave-local
set wlan1 interface=wlan1
/system clock
set time-zone-name=Europe/Amsterdam
/system identity
set name=rbrd01
/system logging
add action=disk topics=firewall
/system ntp client
set enabled=yes primary-ntp=83.98.201.133 secondary-ntp=94.228.40.3
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2
add interface=ether3
add interface=ether4
add interface=ether5
add interface=ether6-master-local
add interface=ether7-slave-local
add interface=ether8-slave-local
add interface=ether9-slave-local
add interface=ether10-slave-local
add interface=wlan1
add interface=bridge-local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2
add interface=ether3
add interface=ether4
add interface=ether5
add interface=ether6-master-local
add interface=ether7-slave-local
add interface=ether8-slave-local
add interface=ether9-slave-local
add interface=ether10-slave-local
add interface=wlan1
add interface=bridge-local