Hi i am trying to configure a RB2011 2HnD o have to separate Subnets, so that’s there one for Work and one for the Family so that i cam make separate rules for the LAN to the Family so that they only are allowed to use the internet until a specific time at night.
The RB have 10 Ports
Port 1 : WAN Connection
Port 2-5 : Work Lan (using bridge-local)
Port 6-10 : Family Lan (using bridge-extra)
Work Lan IP 192.168.205.0
Family Lan IP : 192.168.206.0
The Work Lan i working as it suppose to. But on the Family Lan i get the connect IP, DNS and GW Addresses from the DHCP so that part i working.
But there is no connection to the internet from the Family Lan, i can ping DNS Names on the Internet but nothing else, no browsing ore anything.
This i the default config where i have just separated the 2 sides of ports of the router and made a separate bridge.
No havent made anything special to nat and masquerade both IP-ranges with the WAN
But shouldent the default role not take care of that
If you add an IP-range must you that natted to WAN
If you made a bridge give the bridge this IP-adress 192.168.205.1 and configure a DHCP-server on it.
add the ports 2-5
Nat and masquerading this bridge
Do that also with family lan make a bridge and give this bridge IP_adress 192.168.206.1
add DHCP-server on it and nat
Is a wrote DHCP is working as it should i get the corect IP Adresses on each bridged interface.
So everything i working there.
The only problem is that on my family network i dont have access to the internet. It work on the Work part.
The bridged interfaces have the right IP Adresses and DHCP Settings witch you should be able to se in the config file above.
But you say thatthe IP Range must be natted, whay do you mean by that an how ?
Normally Nat is only when you want trafik from the outside to the inside. Witch is not the problem her.
Netork Masquerade should be enough so that the cliens can connect to the internet as far as i know.
Again all DHCP options is right, i get the right IP, Subnet, DNS and GW informatiosn on both interfaces so thats all right.
The strange thing ewerything is working on the Work bridged network
On the Family bridge i still get the correct IP And ewerything for that network but the only thing working is DNS lookup.
And I can’t ping the default gateway 192.168.206.1
Witch is strange because is says that that interface is the DNS Server and DHCP Server.
NAT is configuret right to.
add action=masquerade chain=srcnat comment=“default configuration”
out-interface=ether1-gateway src-address=192.168.205.0/24 to-addresses=
0.0.0.0
add action=masquerade chain=srcnat comment=“default configuration”
out-interface=ether1-gateway src-address=192.168.206.0/24 to-addresses=
0.0.0.0Have tryed to change the NAT your way but still disent work. My way it should work without adding any IP adresses should work on any interfaces.
The 0.0.0.0 from nat is wrong this must the IP-adres from your standard gateway
Try again setup the DHCP-server and set DNS IP_address like 8.8.8.8 and 8.8.4.4