Hi I need a little push in the back to get started.
Read a lot but am a litle bit stuck.
I can connect one network and that works, but when ad a second one all collapse.
I have got 2 internet connections:
213.125.22.9/29
213.125.54.57/29
hardware = RB2011iLS-IN
What I want:
Mikrotik
Port 1 = 213.125.22.9/29
Port 2 = 213.125.54.57/29
Port 3 = sniffer port ( Ntop machine for network analyzing)
Port 4 = webserver 213.125.22.12
Port 5 = webserver 213.125.22.60
Port 6 = 213.125.22.13 whit DHCP Pool and switch for 8 acces points to provide wireless, A NAS and 20 wall outlets whit PC’s.
Do you want the web servers to have the public IP address configured directly on them or do you want to give them internal private IP addresses and do 1:1 nat from the WAN interfaces?
If the first, then I suggest using the switching capabilities of the 2011. put WAN1 into ether1, web server 1 into ether2, configure ether2 as slave to ether1. Then put WAN2 into ether6, set ether7 to run slave to ether6. This will let the two web servers have direct access to the Internet and not be “behind” the 2011.
If you want to do NAT, you’re going to have to do a good bit more work, to include policy routing (doing route marks from the mangle table) at least for web server 2, but this does give you more control over everything.
As for the public IP facing the APs - I suppose you mean to do NAT from users such that they surf the internet from address ..22.13? You would do this by making a NAT rule in the srcnat chain where in-interface = ether6 (or whichever interface they’re connected to) and out-interface = wan1’s interface, and action = src-nat, with the src address being set to ..22.13
Multi-homed connections are not straightforward for getting started with Mikrotik, but Mikrotik is a very good platform for such things. Good luck!