simple internet sharing between freinds

happydaddy · February 13, 2009, 12:06am

Hi

I created a pppoe client on my AP router and i can ping the internet with the router. Now what i want to do is give my freind internet access by using the router as a gateway.My friend connects wireless with a cpe to my AP. i tried adding the gateway of my AP to his pc but no luck.

My Ap is 192.168.1.203/24 Bridge mode
His Cpe is 192.168.1.199/24 station wds bridge
his pc is 192.168.1.230/24
my modem ip 192.168.1.200/24

I dont want him to connect directly to the modem as i have my own account in there. He has to use the router which is dialed up pppoe with a seperate account.

Thanks in advance

galaxynet · February 13, 2009, 6:39pm

happydaddy -

Well you’ll need to show a bit more of your config… PPoE. route, ip address, ip firewall, ip dns, etc for the AP.

In terminal mode you can use /ip address print or /ip address export

I like using the print method, but export will work ok.

You’ll need to do this for all of the above.

R/

Thom

happydaddy · February 13, 2009, 10:11pm

Hi

Thanks for reply sorry for being noob. I made a few changes to the router and now i am using normal routing instead of the bridge wds modes. find below the ip print.

Station router connecting to an access point. The modems ip is 172.18.200.69 connected to the ether 1

Flags: X - disabled, I - invalid, D - dynamic 
 #   ADDRESS            NETWORK         BROADCAST       INTERFACE             
 0   ;;; Link to Grassy Park - Toady
     172.18.200.70/32   172.18.203.2    172.18.203.2    wlan1                 
 1   ;;; Local Range for LAN - Toady
     172.18.200.70/29   172.18.200.64   172.18.200.71   ether1                
 2 D 41.144.9.12/32     165.146.132.1   0.0.0.0         pppoe-out1

The next ip’s print might look a bit messy. “Link to maj” is the one we looking at from the high site point of veiw.

Flags: X - disabled, I - invalid, D - dynamic 
 #   ADDRESS            NETWORK         BROADCAST       INTERFACE              
 0   ;;; LOEM BRIDGE
     192.168.1.207/24   192.168.1.0     192.168.1.255   bridge1                
 1   ;;; Link to Minarat - Toady
     172.18.203.2/30    172.18.203.0    172.18.203.3    Grid to PH      
 2   ;;; Link to Mindtrix - Toady
     172.18.203.2/32    172.18.200.102  172.18.200.102  Sector 2               
 3   ;;; Link to TOPPDOGG - Toady
     172.18.203.37/30   172.18.203.36   172.18.203.39   Sector 2               
 4   ;;; OSPF to Lavender Hill
     172.18.203.13/30   172.18.203.12   172.18.203.15   grid lavernderhill     
 5   ;;; OSPF to PPark - Toady
     172.18.203.25/30   172.18.203.24   172.18.203.27   bridge1                
 6   ;;; Link to Maj - Toady
     172.18.203.2/32    172.18.200.70   172.18.200.70   Sector 1

What i need to do is come in from the “link to minarat” straight through to either the modem 172.18.200.69 or use the pppoe connction on the station router to supply the internet connection to the computer ip address 172.18.200.9 which is connected to the “link to minarat”.

I cant seem to ping the modem from the AP, i can however ping it from the station router. i can ping the pc 172.18.200.65 connected to the station router, maybe the adsl router needs some settings for the AP to ping it?

Please let me know if this is OK or if i need to elaborate more.Ignore my post on top because i realize that my new configuration is way different. i still need to achieve the same result though.

Thanks

happydaddy · February 14, 2009, 10:17am

ok i added a route to the adsl router(172.18.200.69) network 172.16.0.0 subnet 255.240.0.0 gateway 172.18.200.70 and i can know ping it from pc 172.18.200.9 . Now i added the adsl router ip to the pc’s gateway but no internet.

PC IP 172.18.200.9 subnet 255.255.255.248 gatway 172.18.200.69(adsl router)

Any help

galaxynet · February 14, 2009, 1:47pm

happydaddy -

Well you have quite a mess there - so let’s start again…

Need to see - and please label the client and the AP;

/ip address print - both
/ip route print - both
/ip route rule print - both
/ip firewall nat print - both

I also see you still have a bridge in there and it is not disabled.

From what you are saying you also have access to your dsl modem - and you put routes in there? Can you also post those routes here as well?

What it looks like to me is there is A) a routing issue and B) I would almost bet money that you have a NAT rule before the dsl router that is suppose to nat your data to something the dsl router can pass upstream. But you do NOT have a nat rule to do the same for your friend…

R/

Thom

happydaddy · February 14, 2009, 4:18pm

Hi

i havent completely moved away from bridge on Highsite because there is still some clients using station wds and bridge on all the interfaces. i have only done my one. which is the station.

/ip address print STATION

[admin@MAJ] > /ip address print 
Flags: X - disabled, I - invalid, D - dynamic 
 #   ADDRESS            NETWORK         BROADCAST       INTERFACE              
 0   ;;; Link to Grassy Park - Toady
     172.18.200.70/32   172.18.203.2    172.18.203.2    wlan1                  
 1   ;;; Local Range for LAN - Toady
     172.18.200.70/29   172.18.200.64   172.18.200.71   ether1                 
 2 D 41.144.9.100/32    165.146.132.1   0.0.0.0         pppoe-out1

/ip address print AP

[admin@Grassy Park] > /ip address print
Flags: X - disabled, I - invalid, D - dynamic 
 #   ADDRESS            NETWORK         BROADCAST       INTERFACE              
 0   ;;; LOEM BRIDGE
     192.168.1.207/24   192.168.1.0     192.168.1.255   bridge1                
 1   ;;; Link to Minarat - Toady
     172.18.203.2/30    172.18.203.0    172.18.203.3    Grid to PH             
 2   ;;; Link to Mindtrix - Toady
     172.18.203.2/32    172.18.200.102  172.18.200.102  Sector 2               
 3   ;;; Link to TOPPDOGG - Toady
     172.18.203.37/30   172.18.203.36   172.18.203.39   Sector 2               
 4   ;;; OSPF to Lavender Hill
     172.18.203.13/30   172.18.203.12   172.18.203.15   grid lavernderhill     
 5   ;;; OSPF to PPark - Toady
     172.18.203.25/30   172.18.203.24   172.18.203.27   bridge1                
 6   ;;; Link to Maj - Toady
     172.18.203.2/32    172.18.200.70   172.18.200.70   Sector 1

/ip route print Station

Flags: X - disabled, A - active, D - dynamic, 
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, 
B - blackhole, U - unreachable, P - prohibit 
 #      DST-ADDRESS        PREF-SRC        GATEWAY-STATE GATEWAY                DISTANCE INTERFACE      
 0 A S  0.0.0.0/0                          reachable     pppoe-out1             1        pppoe-out1     
 1 ADC  165.146.132.1/32   41.144.9.100                                         0        pppoe-out1     
 2 A S  ;;; Route to CTWUG - Toady
        172.16.0.0/12                      reachable     172.18.203.2           1        wlan1          
 3 ADC  172.18.200.64/29   172.18.200.70                                        0        ether1         
 4 ADC  172.18.203.2/32    172.18.200.70                                        0        wlan1

/ip route print AP

 #      DST-ADDRESS        PREF-SRC        GATEWAY-STATE GATEWAY               DISTANCE INTERFACE      
 0 ADo  172.16.0.0/12                      reachable     172.18.203.1          110      bridge1        
 1 ADo  172.18.43.249/32                   reachable     172.18.203.1          110      bridge1        
 2 ADo  172.18.200.8/29                    reachable     172.18.203.1          110      bridge1        
 3 ADo  172.18.200.14/32                   reachable     172.18.203.1          110      bridge1        
 4 ADo  172.18.200.16/29                   reachable     172.18.203.1          110      bridge1        
 5 ADo  172.18.200.24/29                   reachable     172.18.203.1          110      bridge1        
 6 A S  ;;; Route to Maj - Toady
        172.18.200.64/29                   reachable     172.18.200.70         1        bridge1        
 7 ADC  172.18.200.70/32   172.18.203.2                                        0        bridge1        
 8 A S  ;;; Range for Mindtrix - Toady
        172.18.200.96/29                   reachable     172.18.200.102        1        bridge1        
 9 ADC  172.18.200.102/32  172.18.203.2                                        0        bridge1        
10 ADo  172.18.200.128/29                  reachable     172.18.203.14         110      bridge1        
11 ADo  172.18.200.134/32                  reachable     172.18.203.14         110      bridge1        
12 ADo  172.18.200.152/29                  reachable     172.18.203.38         110      bridge1        
13 ADo  172.18.200.168/29                  reachable     172.18.203.1          110      bridge1        
14 ADo  172.18.200.174/32                  reachable     172.18.203.1          110      bridge1        
15 ADC  172.18.203.0/30    172.18.203.2                                        0        bridge1        
16 ADo  172.18.203.4/30                    reachable     172.18.203.1          110      bridge1        
17 ADC  172.18.203.12/30   172.18.203.13                                       0        bridge1        
18 ADo  172.18.203.16/30                   reachable     172.18.203.1          110      bridge1        
19 ADo  172.18.203.20/30                   reachable     172.18.203.1          110      bridge1        
20 ADC  172.18.203.24/30   172.18.203.25                                       0        bridge1        
21 ADo  172.18.203.32/30                   reachable     172.18.203.14         110      bridge1        
22 ADC  172.18.203.36/30   172.18.203.37                                       0        bridge1        
23 ADC  192.168.1.0/24     192.168.1.207                                       0        bridge1

/ip route rule print Station

[admin@MAJ] > /ip route rule print
Flags: X - disabled, I - inactive

/ip route rule print AP

[admin@Grassy Park] > /ip route rule print
Flags: X - disabled, I - inactive

/ip firewall nat Station

[admin@MAJ] > /ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic

/ip firewall nat Ap

[admin@Grassy Park] /ip firewall nat> /ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic

Remember my friend is linking in from the “Link to Minarat” interface and thats still in station wds mode linking to another Highsite. the bridge uses the 192.168.1.xx/24 range. Between me and my freind we using the 172 ip range.

Was looking into the vpn to link to him but not to sure how it works most of the examples are for tunneling through the internet to get to a lan. i need to get through a wireless network.

Thanks

happydaddy · February 15, 2009, 9:37am

Hi

OK i got it. When you mentioned Nat i looked into that and found the answers. i added a src nat with with masquerade. That was it.

Thanks a lot man.