80.1.0.0/30 is the range i got from my ISP so that i can get on this thing called the internet
80.0.10.0/27 is a routed range, witch i have splitted up to 8 /30.
IP SETUP:
ether1: 80.1.0.0/30
ether3: no ip set
ether3-vlan10: 80.0.10.0/30
ether3-vlan20: 80.0.10.4/30
ether3-vlan30: 80.0.10.8/30
ether3-vlan40: 80.0.10.12/30
ether3-vlan50: 80.0.10.16/30
ether3-vlan60: 80.0.10.20/30
ether3-vlan70: 80.0.10.24/30
ether3-vlan80: 80.0.10.28/30
And on ether3 there is a Cisco 2950 where fa0/24 (the trunk port) is connected.
The thing that i wanted to setup was so that every vlan can talk to etch other, and go on the net via ether1.
So that trafik can get in/out from the net.
As it is now i can ping the IP's the RouterOS has taken for it self, from the internet.
But not the device connectet as 80.0.0.2, 80.0.0.6, 80.0.0.10 and so on...
And 80.0.0.2, 80.0.0.6, 80.0.0.10 and so on, can't connect to the internet.
Behind the RB133 are users on a RFC1918 IP range.
And from x.12/30 and up are servers.
I'm new to RouterOS routing (i'm migrating from m0n0wall).
Well first thing that strikes me is that you want all the VLans to talk to each other…so this begs the question - why use VLans at all if that is your goal?
The first quote - eth1 80.1.0.0/30 which is your ‘public’ IP network and it is on eth1.
In your second quote - you show 80.1.0.0/24 as being available and the gateway (I have to assume as you seemed to have trimmed everything out…) is 80.1.0.2 Since it has an ADC on the front of that route that means you have 80.1.0.2/24 as the actual IP address - you clearly stated in the begining that 80.1.0.0/30 was the network and the IP was 80.1.0.2/30
You also need to add a routing rule - in Winbox, /Ip route, once here go to the second tab - rule. Here you add src 0.0.0.0/0 dst 0.0.0.0/0 action=lookup table=main
So you need to clean up you example - it will make more sense then…
Also think about it - do you really need VLans? Or are you just following a ‘fad’? It you don’t need VLans then you could use ALL of the public IPs instead of only 8 of them…
The reason that i want them to talk to each other, is that i have servers on does vlan’s also and they maybe want to visit each other and share data.
And the reason not to just put them all in 1 subnet is so that other servers/users can’t take IP’s from other people.
Good old copy/pasta… I did not want to make my IP’s public (well yes they are public, but you get the drift) in here, so i just deleted and copy/pasta/edit
Sorry for that… it is a /30
Nope no ‘fad’ here (or i hope not).
But i’ll try the routing rule you wrote. And make a better setup/new
Well i needed the other connection and IP range for other use, so i’m stuck on this setup now.
I have Computer’s on 192.168.70.253, 192.168.60.254 and 192.168.50.2
And i have routerboards on 10.50.90.10 and 10.50.90.20
The Computers can ping each other fine.
But i can’t ping out on ether1, but i can ping 10.50.90.30 and not 10.50.90.10 + 10.50.90.20
And when i do a traceroute between the Computers, it takes 60sek for 2hops (30sek each)… Why?
The RB333 (the one with address 10.50.90.30) can go on the new via the gw 10.20.30.1
But how do i get 192.168.. on the net without NAT?
My gateway on 10.20.30.1 has static routes set like this:
192.168.(20-240).0/24 → 10.50.90.30
