Greeting. I got router setup parameters from isp. when I inserted the parameters, the computers in the network 192.168.100.0 got the Internet and have the possibility of pinging (8.8.8.8, google.com…). but it doesn’t work on the router itself: IP cloud, upgrade, ntp… Neither does ping 8.8.8.8 or 8.8.4.4. Following the cases on the forum I was not able to solve the problem. Or I skipped something. Thank you for your time. If necessary, I will write the parameters that I received on the email from the ISP.
# jun/06/2023 20:48:48 by RouterOS 7.9
# software id = N2YF-LZ4T
#
# model = RB1100x4
# serial number = ###########
/interface bridge
add name=Loopback protocol-mode=none
add arp=proxy-arp name=bridge1-LAN
/interface ethernet
set [ find default-name=ether2 ] name=LAN
set [ find default-name=ether1 ] name=Uplink
/interface wireguard
add listen-port=13231 mtu=1420 name=wireguard1
/interface list
add name=LAN1
add name=WAN
/interface lte apn
set [ find default=yes ] ip-type=ipv4 use-network-apn=no
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp_pool1 ranges=192.168.100.2-192.168.100.99
/ip dhcp-server
add address-pool=dhcp_pool1 interface=bridge1-LAN name=dhcp1
/port
set 0 name=serial0
set 1 name=serial1
/interface bridge port
add bridge=bridge1-LAN interface=LAN
add bridge=bridge1-LAN interface=ether3
add bridge=bridge1-LAN interface=ether4
add bridge=bridge1-LAN interface=ether5
/ip neighbor discovery-settings
set discover-interface-list=none
/ip settings
set max-neighbor-entries=8192
/ipv6 settings
set disable-ipv6=yes max-neighbor-entries=8192
/interface list member
add interface=bridge1-LAN list=LAN1
add interface=Uplink list=WAN
/interface ovpn-server server
set auth=sha1 certificate=server cipher=aes256-cbc enabled=yes \
require-client-certificate=yes
/interface wireguard peers
add allowed-address=10.10.105.3/32 interface=wireguard1 public-key=\
"############################"
/ip address
add address=100.64.0.165/30 interface=Uplink network=100.64.0.164
add address=public wanip interface=Loopback network=public wanip
add address=192.168.100.1/24 interface=bridge1-LAN network=192.168.100.0
add address=10.10.105.1/24 interface=wireguard1 network=10.10.105.0
/ip cloud
set update-time=no
/ip dhcp-server network
add address=192.168.100.0/24 dns-server=8.8.8.8,8.8.4.4 gateway=192.168.100.1
/ip dns
set allow-remote-requests=yes servers=192.168.100.1,8.8.4.4,1.1.1.1
/ip firewall filter
add action=accept chain=input comment=OpenVPN dst-port=1194 protocol=tcp
add action=accept chain=input comment=Wireguard dst-port=13231 protocol=udp
add action=accept chain=input comment=\
"defconf: accept established,related,untracked" connection-state=\
established,related,untracked
add action=drop chain=input comment="defconf: drop invalid" connection-state=\
invalid
add action=accept chain=input comment="defconf: accept ICMP" protocol=icmp
add action=accept chain=input comment=\
"defconf: accept to local loopback (for CAPsMAN)" dst-address=127.0.0.1
add action=drop chain=input comment="defconf: drop all not coming from LAN" \
in-interface-list=!LAN1
add action=accept chain=forward comment="defconf: accept in ipsec policy" \
ipsec-policy=in,ipsec
add action=accept chain=forward comment="defconf: accept out ipsec policy" \
ipsec-policy=out,ipsec
add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \
connection-state=established,related hw-offload=yes
add action=accept chain=forward comment=\
"defconf: accept established,related, untracked" connection-state=\
established,related,untracked
add action=drop chain=forward comment="defconf: drop invalid" \
connection-state=invalid
add action=drop chain=forward comment=\
"defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \
connection-state=new in-interface-list=WAN
/ip firewall nat
add action=dst-nat chain=dstnat dst-port=1433 in-interface=Uplink protocol=\
tcp to-addresses=192.168.100.180 to-ports=1433
add action=src-nat chain=srcnat src-address=192.168.100.0/24 to-addresses=\
public wanip
/ip route
add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=100.64.0.166 \
pref-src="" routing-table=main scope=30 suppress-hw-offload=no \
target-scope=10
/ip service
set ftp disabled=yes
set www disabled=yes
set ssh disabled=yes
set api disabled=yes
set api-ssl disabled=yes
/ppp secret
add local-address=192.168.100.1 name=###### remote-address=192.168.100.151 \
service=ovpn
/system clock manual
set time-zone=+01:00
/system identity
set name=
/system note
set show-at-login=no
/system ntp client servers
add address=
add address=
/tool bandwidth-server
set enabled=no