Dear All,
Ive been experiencing a routing issue on a 5.11v mikrotik RB750.
I’ve got my LAN connected to ether5 with subnet 192.168.1.0/24. ether3 is connected to a TP link wireless router to separate WIFI traffic from general LAN traffic. ether3 is giving IP 10.10.1.2, TP Link’s WAN interface is given an IP of 10.10.1.1. the LAN on TP link’s side is 192.168.2.0/24.
This is pretty straight forward routing. All traffic in RB750 towards 192.168.2.0 is pushed to 10.10.1.1, and on TP link 10.10.1.2 is set as default GW.
[Mikrotik ether5, 192.168.1.1]—[Mikrotik Ether3 10.10.1.2]—[TP WAN 10.10.1.1]—[TP LAN 10.10.1.1]
Everything works correctly when i ping from TP towards Mikrotik. For example pinging from hosts on 192.168.2.0 has no issues reaching all hosts on 192.168.1.1. However I cannot ping ANY host on the 192.168.2.0 subnet from the mikrotik 192.168.1.0 hosts.
Here is my config.
/ip address
add address=192.168.1.1/24 comment=“default configuration” disabled=no interface=ether5-GW-LAN network=192.168.1.0
add address=10.10.1.2/30 disabled=no interface=ether3-WIFI network=10.10.1.0
/ip route
add disabled=no distance=1 dst-address=192.168.2.0/24 gateway=10.10.1.1 pref-src=10.10.1.2 scope=30 target-scope=10
Also under torch, i can see packets coming back from the TP WAN towards the Mikrotik’s WIFI ether3 port with destination 10.10.1.2 from the source IP i was just pinging that had timed out.
Any comment is very much appreciated.
Thank you in advance
Are you NATing somewhere? Without NAT if you are pinging from 192.168.1.x <> 192.168.2.x then you shouldn’t be seeing ping packets showing 10.10.1.2.
Ive got no NAT that could affect this interface, here’s my NAT config as below:
/ip firewall nat
add action=masquerade chain=srcnat disabled=no out-interface=ether1-GW-RSN
add action=masquerade chain=srcnat disabled=no out-interface=ether2-GW-POL
add action=masquerade chain=srcnat disabled=no out-interface=pppoe-out1 to-addresses=0.0.0.0
its supposed to be a simple config as displayed in many standard static configurations for mikrotik, but in my case something’s not allowing the packets to be routed to the source on the way back from the TP LAN.
Regards
Ive got no NAT that could affect this interface, here’s my NAT config as below:
/ip firewall nat
add action=masquerade chain=srcnat disabled=no out-interface=ether1-GW-RSN
add action=masquerade chain=srcnat disabled=no out-interface=ether2-GW-POL
add action=masquerade chain=srcnat disabled=no out-interface=pppoe-out1 to-addresses=0.0.0.0
its supposed to be a simple config as displayed in many standard static configurations for mikrotik, but in my case something’s not allowing the packets to be routed to the source on the way back from the TP LAN.
Regards
I would appreciate a reply on this as i still experience this problem.
Basically to summarize my issue again,
my WIFI router is connected to interface “ether3-WIFI” with IP address 10.10.1.2 set on mikrotik and 10.10.1.1 set on WIFI router’s WAN.
The LAN on WIFI router is set to 192.168.2.0/24 subnet.
The LAN on mikrotik router is set to 192.168.1.0/24.
All clients on the 192.168.2.0 subnet can see the mikrotik LAN clients on 192.168.1.0. But none of the clients on Mikrotik can see the WIFI router’s LAN subnet.
Regards