So currently we have 2 sites, they are connected via IPIP tunnels
for example site 1 (main site head office) private ip range 10.0.1.0/24 and site 2 private range 10.0.2.0/24
on site 1 there is a squid web proxy set up, but we no longer need this and I need to disable it, but as soon as I disable it then .local websites cannot be reached from site 2
so if i remote to a machine on site 2’s network and try to access a local website running on tcp port 80 it cannot be reached.
bear in mind the web servers are not accessible externally and only internally, they are all hosted at site 1.
as soon as i enable the web squid proxy then they work
we have a transparent proxy set up to allow all machines to route through the squid proxy for port 80 traffic
tbh i don’t really find the rule where you do transparent redirection/dst-nat to your squid installation in this config.
just a sidenote: using whitespaces in interface names might be an issue sometimes. i’d avoid it, although it does not seem to be the source of your current problem.
In my experience it works fine within the MikroTik world, but some SNMP monitoring software really freaks out… So I avoid it as well. (using word-word-word format instead)
what is the purpose of this in your nat.
Can you post your ipip tunnels config for each side hiding config.
Advise what IP’s you using for the remote and local side of each tunnel.
Post routes you using to pass traffic over ipip tunnels.