plzzzzz so ergent

ali_abbass85 · September 2, 2007, 3:51pm

hey guys plz need some help here
i want to share may internet on my lan
i have 2 ethernet cards :local and public
the internet from my isp is broadband (user: ali ,pass:321)
and i want to make a pppoe server so i have done the following:

added addresses to the interfaces

ip address add address 10.0.0.217/24 interface Public
ip address add address 192.168.0.254/24 interface Local
ip firewall nat add chain=srcnat action=masquerade out-interface=Public

now the pppoe client provided for me from my isp (user: ali ,pass: 321)

interface pppoe-client add name=pppoe-user user=ali password=321 interface=public disabled=no

and my pppoe server

/ip pool add name="pppoe-pool" ranges=10.1.1.62-10.1.1.72
/ppp profile add name="pppoe-profile" local-address=10.1.1.1 remote-address=pppoe-pool
/ppp secret add name=aaa1 password=123 service=pppoe profile=pppoe-profile
/interface pppoe-server server add service-name=internet interface=local default-profile=pppoe-profile

my clients can connect to the server and the pppoe out also can connect to the isp
iam missing something because i cant access the internet from local
and thx in advance

tneumann · September 2, 2007, 9:24pm

Your masquerading / srcnat does not work because the rule

ip firewall nat add chain=srcnat action=masquerade out-interface=Public

specifies the wrong out-interface.

You’re running a pppoe-client on your public interface towards your ISP,
therefore the interface that will carry your outgoing traffic will be your
pppoe-client interface and not the (physical) public interface.

Also, if all you do on the public interface is pppoe then you should not
assign any IP address to the public interface itself for security reasons.

–Tom

ali_abbass85 · September 4, 2007, 5:43am

thx alot tom for the remark but i still missing something aren’t I?
because internet is still not working
plz can u place me the steps for my server ?

nehad77 · September 4, 2007, 6:59am

*Check the Route Table ,
Add the Gatewaye for your ISP on the static route
*

ali_abbass85 · September 4, 2007, 7:52am

but the isp didnt provide me with gateway?
i only have the username and pass?

mr_antenna · September 4, 2007, 8:28am

there should be always a gateway if you want to access internet. ask your isp for the dns and gateway or if they are using dhcp configure your system for dhcp.

ali_abbass85 · September 4, 2007, 9:32am

is it the pppoe server ip that i connect to?
do i add it to the dns?

channingzou · September 5, 2007, 3:28am

if you doing right,DNS IP will get automatic, under IP DNS.

unlimitedme · September 5, 2007, 6:24am

you were running ppoe-client on public interface?
can you print out the route?
/ip route print

ali_abbass85 · September 5, 2007, 2:22pm

yes iam running a pppoe clinet on the public interface
and what should i add to dns because it is empty
and here is the route print

Flags: X - disabled, A - active, D - dynamic, 
C - connect, S - static, r - rip, b - bgp, o - ospf 
 #     DST-ADDRESS        PREF-SRC        G GATEWAY         DISTANCE INTERFACE 
 0 ADC 172.16.221.1/32    172.16.221.7                               pppoe-out1
 1 ADC 192.168.0.0/24     192.168.0.254                              local     
 2 A S 0.0.0.0/0                          r 172.16.221.1             pppoe-out1
 3  D  0.0.0.0/0                          r 172.16.221.1    1        pppoe-out1