Im have problem with route between two interfaces.
Im have:
bridge1 (all interfaces)
ether1 (LAN1, 192.168.0.0/16)
ethet7 (WAN)
ether8 (LAN2, 192.170.1.0/24)
When im connect to LAN1 im can't ping device in LAN2 (im can ping only ether8 - 192.170.1.1).
Im create static router (dest: 192.168.1.0/24, gateway: ether8) but still don't work. Someone can help?
DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S 0.0.0.0/0 78.11.xxx.xxx 2
1 ADC 78.11.xxx.xxx/30 78.11.xxx.xxx ether7 0
2 ADC 192.168.0.0/16 192.168.1.1 bridge1 0
3 ADC 192.170.1.0/24 192.170.1.1 bridge1 0
4 S 192.170.1.0/24 ether8 1
If you have two independent LANs, you probably don’t want them to be part of same bridge.
Routes for connected subnets are added automatically, you don’t need to add another route to 192.170.1.0/24, when you already have it. If you don’t like that it appears on bridge1, see 1).
192.170.1.0/24 is public subnet, so unless you actually got it from ISP (most likely not), you should not use it.
Router will by default try to route everything, but it also depends on other devices, what they send to router. Is this router default gateway for all connected devices in both LANs?
On one port im have WAN. In don’t need bride to access to WAN? (In need wan on all port)
Ok, deleted
In need second subnet, so better use 192.160.1.0/24?
Yes, one device have gateway 192.168.1.1 (LAN1) and second one 192.170.1.1 (LAN2).
In bridge for LAN2 is record “PREF-SRC” setting at “192.170.1.0”. So im think he route LAN2 only packed from 192.170.1.0, but im don’t know how change it.
When im connect to LAN1 but im change my IP to LAN2 network im can ping LAN2 device.
Bridge is software equivalent of hardware switch, it connects ports together. If you have two different LANs, it’s usually because you want to isolate them in some way, you wouldn’t connect all devices from both LANs to same switch, and it’s the same with bridge. But if you do it, it should still work, you just won’t be able to control communication between two LANs very well (that’s why you can set LAN2 address in LAN1 port and it works).
192.160.1.0/24 is still public subnet. Available private subnets are 192.168.0.0/16, 10.0.0.0/8 and 172.16.0.0/12. And one important thing, you can divide them in smaller ones, so you can have e.g. 192.168.0.0/24, 192.168.1.0/24, 192.168.2.0/24, …
So this router has both addresses 192.168.1.1/16 and 192.170.1.1/24, and other devices have these addresses as their default gateways? If so, it should work. Maybe it’s blocked by firewall?
It would be probably best to export your configuration (command “/export hide-sensitive” in terminal) and post it here.
There are some mistakes in your config, but nothing that would prevent it from working. Do you test only ping? Are you sure it’s not just blocked by target device? You don’t have any firewall filter rules, so if packet comes to router, it will forward it.
Anyway, you should remove ether8 from bridge, that’s clearly wrong. Then you don’t need this rule:
Then use Tools->Torch and see what happens. If you ping 192.168.x.x from 192.170.1.y, you must first see incoming packet on ether8 and then the same packet as outgoing on bridge1. And the other way around. If this is ok, but you don’t see any reply packets coming back, blame target device.
