Good day
Total noob when it comes to Mikrotik.
I have a CCR 1009.
On interface 1 I have IP range configured 10.0.0.0/22
On interface 2 I have 4 VLAN’s.
On one of the VLAN interfaces I have the following configured 10.0.0.97/29.
On interface 2 I am able to ping 10.0.0.102 over VLAN 10
But when I try to Ping Via Interface 1 IP address 10.0.0.102 I am not able to.
And also if I try to ping a device that is connected to interface 1 from interface interface 2 I am not able to reach it.
What should I do to get it working?
Thank
You should use different IP ranges on different interfaces. The problem is that any device outside of the /29 network (i.e. is on the ether1 10.0.0.0/22 network) does not realize that this block of addresses is not local and must be reached via the router. They simply ARP for 10.0.0.103, which does not reply because it’s on a different network segment.
10.0.0.96/29 is a subset of 10.0.0.0/22.
Renumber the vlan10 network to something outside the range of 10.0.0.0/22 - for example, 10.10.0.96/29
Another option is to set ARP=proxy-arp on ether1, which will fix this for you, but bear in mind that this is a “non-standard” sort of thing - I would only recommend this if you are in fact working with public IP addresses that you simply changed to 10.0.0.0/22 for the purposes of your post here.
Hi there
In Fact I am doing it with Public IP’s.
So we have to supply a /29 Range to a Peering provider.
So we have specified the /22 on ether1 and then plugged the cable in from the peering provider into ether2.
So we can see them now only from ether2 but we can not see them from ether1.
I have now enabled the proxy-arp on ether1 but I can still not see them from a device on the internal network.
I am able to ping the interface 10.0.0.97 from a device connected to ether1.
But not 10.0.0.102 but this is as you would say due to the fact that this is on the VLAN.
So what would you recommend I should do?
I can still change it with the provider.
Please note that this is a network that is being built and we are able to make changes.
Thanks
Segment the network into subnets and attach those subnets to the interfaces where they are needed. I guess you won´t need your whole /22 to be within one block.
Additonally I would only assign those addresses and subnets that are actually in use. Will give you more flexibility afterwards.
The question have ben answered. But as long as you take Layer2 in count you can with routing and proxy-arping overcome many subnetting wasting scenarios offcourse all depends on what problem you actually trying to solve.