Up against a simple problem I can’t solve… I have a /30 connection to my upstream ISP. They are sending me a separate /25 of public IP space to my edge router (Mikrotik 1). We then subnet that /25 down to /28’s, /29’s and /30’s for internal use. We route those to various VLANs. All is great. Now, we have Mikrotik 2 downstream of Miktrotik 1. It is bridged with a /30 of public space (from the /25) to Mikrotik 1. Works great. All users behind Mikrotik 2 are on private IP space and src-nat via the gateway public on Mikrotik 2. Works fine.
Here is the problem I can’t solve. One customer behind Mikrotik 2 needs a single public IP. They have a router on the bridge (LAN) of Mikrotik 2 that we can put in a static IP on the WAN side.
I took a /30 of the /25 public space and did a static route on Mikrotik 1 to send that /30 to the vlan bridging to Mikrotik 2. On Miktrotik 2, I can’t get it to route properly to the customer router. I’m a layer deeper than I comprehend. Do I create an IP:Address on Mikrotik 2 with 2.0.0.253/30 and give it an interface of “bridge” or “wan”? Diagram below to help understand. All routing in this diagram is done with public IPs.
Ideally, the customer behind Mikrotik 2 uses IP: 2.0.0.254 with gateway of 2.0.0.253 (Mikrotik 2). I’m not able to make that happen with my attempts…