Routed point-to-point?

RevennaFox · February 21, 2018, 8:11pm

I’m trying to setup a point-to-point link to extend network and internet to a remote site. I really don’t want to bridge it, but every Mikrotik tutorial or example I’ve found online so far is for bridged wireless connections.
Here’s my goal:
Internet<–>Router A 10.0.0.1<–Wired Network A 10.0.0.0/24–>NetBox AP<–Wireless Link 10.0.1.0/30–>NetBox Station<–Wired Network B 10.0.2.0/24
I want hosts on 10.0.0.0 and 10.0.2.0 to be able to access each other, and the internet, but not at layer 2. There will be a lot of broadcast traffic on both of those networks that I don’t want propagated over the air. I’d also like to be able to selectively firewall ports on network A from network B. What’s the easiest way to do this without bridging networks A and B?

For reference:
NetBox AP ether1 address is 10.0.0.32
NetBox AP wlan1 address is 10.0.1.1
NetBox Station wlan1 is 10.0.1.2
NetBox Station ether1 is 10.0.2.1
Router A is not a Mikrotik router
Currently the only thing configured is the wireless link, which is up and working.

Paternot · February 21, 2018, 8:46pm

You have just a routing problem. Forget about “wired” and “wireless”. Everything is already set (as You said). Insert static routes where needed, and off You go. Don’t forget the firewall too.

And that’s it.

RevennaFox · February 21, 2018, 10:37pm

Thank you, that’s definitely my issue. But I seem to be doing something wrong when I set up my routing table. Although I can ping 10.0.2.1, 10.0.1.2, 10.0.1.1, and 10.0.0.32 from a host connected to network B, I can’t ping any of the hosts on network A. On the other end I can ping 10.0.0.32 from a host connected to network A, but nothing downstream. If I try pinging from NetBox A, I can reach 10.0.0.32, 10.0.1.1, 10.0.1.2, and 10.0.2.1, but any host on network B times out.

Here’s my routing table for NetBox AP:

 #      DST-ADDRESS        PREF-SRC        GATEWAY            DISTANCE
 0 ADS  0.0.0.0/0                          10.0.0.1                  1
 1 ADC  10.0.0.0/24        10.0.0.32       ether1                    0
 2 ADC  10.0.1.0/30        10.0.1.1        wlan1                     0
 3 A S  10.0.2.0/24                        10.0.1.2                  1

Here’s the routing table for NetBox Station:

 #      DST-ADDRESS        PREF-SRC        GATEWAY            DISTANCE
 0 A S  10.0.0.0/24                        10.0.1.1                  1
 1 ADC  10.0.1.0/30        10.0.1.2        wlan1                     0
 2 ADC  10.0.2.0/24        10.0.2.1        ether1                    0

Paternot · February 21, 2018, 11:26pm

Routing look ok to me. Netbox station doesn’t have a default gateway: it will not reach the internet. Is it by design?

Your problem looks like firewall and/or NAT to me. First of all, disable the NAT rules. Test. If still doesn’t work, check firewall: you may have to open the ports to be used. These two tests should be made on both Netbox.

quackyo · February 22, 2018, 8:28am

Do you have routes on Router A pointing to the other subnets? If not all hosts on subnet A will go to default gateway (internet) trying to connect to subnet B.