Hi All. I’ve lurked here for a long time and the help of this board has been invaluable but this is my first post. I’ve searched the board and googled the subject and spent days trying approaches that I have read but I’m stuck.
RB 750G, ROS 5.2 I am trying to setup a network with natted private addresses and a few public IPs.
I have a /29 from the provider which will expand shortly. I can get the natted addresses to connect using masquerade with the source addresse set to the private address network range (thinking it would nat only the private addresses and not the public). I cannot get the public IP’s to connect. If I turn all of the interfaces into a switch with a master of ether1, then all will connect but routing rules/queues don’t apply to the public ip’s and I can’t even see the traffic on them.
I’m not sure if I have to have the provider set something additional up or if I am just missing something. A network diagram is below. Thanks for any help!!
How many external IP’s do you need inside your network?
Because right now in your diagram you have network overlapping, that is the same ‘network’ is split over the ether1 and ether2-local which you cant really do.
Can your ISP give you a /30 on your link side and then route the /29 to that /30? this way you can safely have a DMZ and you will be able to protect all the host with external IPs on it with a firewall from the mikrotik.
