Hello,
I’m a complete newbie with Mikrotik Routers (just bought a first one 2 days ago), and i’m already having problems.
I’m connecting to internet through modem connected to ETH1 using PPPoE connection. Everything works completly OK on the computers and phones connected directly to RB2011, but i also have two TpLink Routers running OpenWRT that connects using VPN connection through RB2011UAS to a server on the other side of the country and they offer a completly seperate network in my house and around it for open internet acess.
Those two TpLink routers worked completly fine on the old Router (TpLink with OpenWRT) before i bought RB2011. Now i cannot get any internet connection on TpLink routers if i connect to an open network that they offer.
One of those two routers is also configured so, that it offers two wireless networks. One is open network, that is routed through VPN connection to the server on the other side of the country and the other wireless network it offers is my private one, and is configured so, that it gets ip from Mikrotik and also routes all trafic on that wireless network through Mikrotik. That network also works completly fine.
So for now i know, that both TpLink routers get working DHCP adress from Mikrotik for connecting to Internet but somehow they cannot maintain VPN connection. I also tried to ping server on the internet, when i was connected on that open network and it look’s like sometimes connection get’s through (specialy if i reboot RB2011UAS), since i get ping response, but most of the time Request just times out.
I’m completly out of ideas. I upgraded RB2011UAS to latest RouterOS, restored defaults, disabled firawall…nothing helps.
Any ideas what could be wrong?
Edit: Just a quick update: On the website, that monitors all hotspots it’s written, that “DNS resolving has failed” if that tells you anything.
[admin@MikroTik] > export
# jan/03/1970 06:09:10 by RouterOS 6.20
# software id = AZ3N-AZ5S
#
/interface bridge
add admin-mac=4C:5E:0C:65:A1:59 auto-mac=no name=bridge-local
/interface ethernet
set [ find default-name=ether1 ] name=ether1-gateway
set [ find default-name=ether6 ] name=ether6-master-local
set [ find default-name=ether7 ] master-port=ether6-master-local name=ether7-slave-local
set [ find default-name=ether8 ] master-port=ether6-master-local name=ether8-slave-local
set [ find default-name=ether9 ] master-port=ether6-master-local name=ether9-slave-local
set [ find default-name=ether10 ] master-port=ether6-master-local name=ether10-slave-local
/interface wireless
set [ find default-name=wlan1 ] band=2ghz-b/g/n disabled=no distance=indoors l2mtu=2290 mode=ap-bridge ssid=\
MikroTik-65A162 wireless-protocol=802.11
/ip neighbor discovery
set ether1-gateway discover=no
/ip pool
add name=dhcp ranges=192.168.3.100-192.168.3.200
/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge-local name=default
/port
set 0 name=serial0
/interface pppoe-client
add ac-name="" add-default-route=yes allow=pap,chap,mschap1,mschap2 default-route-distance=1 dial-on-demand=no \
disabled=no interface=ether1-gateway keepalive-timeout=60 max-mru=1480 max-mtu=1480 mrru=disabled name=\
pppoe-out1 password=******** profile=default service-name="" use-peer-dns=yes user=dcavni
/system logging action
set 2 remember=yes
/interface bridge port
add bridge=bridge-local interface=ether2
add bridge=bridge-local interface=ether3
add bridge=bridge-local interface=ether4
add bridge=bridge-local interface=ether5
add bridge=bridge-local interface=ether6-master-local
add bridge=bridge-local interface=sfp1
add bridge=bridge-local interface=wlan1
/ip address
add address=192.168.3.3/24 comment="default configuration" interface=ether2 network=192.168.3.0
/ip dhcp-client
add comment="default configuration" dhcp-options=hostname,clientid interface=ether1-gateway
/ip dhcp-server network
add address=192.168.3.0/24 comment="default configuration" dns-server=192.168.3.3 gateway=192.168.3.3 netmask=\
24
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=192.168.3.3 name=router
/ip firewall filter
add chain=forward comment="default configuration" connection-state=established
add chain=forward comment="default configuration" connection-state=related
add action=drop chain=forward comment="default configuration" connection-state=invalid
add chain=input protocol=icmp
add chain=input connection-state=established
add chain=input connection-state=related
add action=drop chain=input in-interface=ether1-gateway
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" out-interface=pppoe-out1
/ip upnp
set allow-disable-external-interface=no enabled=yes
/ip upnp interfaces
add interface=bridge-local type=internal
add interface=pppoe-out1 type=external
/lcd interface pages
set 0 interfaces="sfp1,ether1-gateway,ether2,ether3,ether4,ether5,ether6-master-local,ether7-sl
-slave-local,ether9-slave-local,ether10-slave-local"
/snmp
set trap-community=public
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2
add interface=ether3
add interface=ether4
add interface=ether5
add interface=ether6-master-local
add interface=wlan1
add interface=sfp1
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2
add interface=ether3
add interface=ether4
add interface=ether5
add interface=ether6-master-local
add interface=wlan1
add interface=sfp1
It does come to “Request time out” from time to time, but i suppose it will get better when i change internet acess from copper to fiber.