No ping to device from AP ?

David1234 · June 1, 2021, 5:35am

Hello ,
I’m missing something - and I don’t know what.

I have a 2 RouterBOARD 941-2nD
1 is AP with address 10.0.0.1/24
2 is station (with bridge all ethernet ports and wlan) with address 10.0.0.250/24
from 2 I can ping to a computer connected to ether2 with address 10.0.0.205
from 1 I can’t reach 10.0.0.205
from my computer connected to 1 using wlan I can reach 10.0.0.205

I added icmp accept rule in 250 firewall
and I can see that 10.0.0.1 is there

device 205 setting are static
10.0.0.205/24
dns 10.0.0.1
gatewat 10.0.0.1
there is internet connection from 10.0.0.205

what could be the reason ?

Thanks ,

mkx · June 1, 2021, 6:17am

Post full configuration export from station. If all ports are bridged, then firewall rules likely don’t do anything… but there are other settings that can affect behaviour.

David1234 · June 1, 2021, 5:44pm

My mistake
I forgot I enable this firewall rule

chain=input action=drop protocol=icmp log=no log-prefix=""

I have change it to

chain=input action=drop protocol=icmp in-interface=!bridge1 log=no log-prefix=""

and now it’s working ,
didn’t notice… sorry

thank you anyway !