two mikrotiks, users lost routes

Green2mb · January 3, 2016, 6:19pm

sorry for the translation.

there are two mikrotiks , one gateway by default.
when restart the second router , users lost packets.
I do not understand what the problem is because the default gateway is available at this time.
two routers include a switch in one , the same as the user

p3rad0x · January 4, 2016, 1:58pm

Hi,

I don’t fully understand your setup.

Can you maybe make a simple network diagram for us?

Green2mb · January 4, 2016, 4:52pm

mikrotik1(tile) - gateway
mikrotik2(mipsbe) - wifi point

I start ping from user1 to user2 = all ok,
then rebooting mikrotik2 and at this moment packets lost!

user1 and user2 have default gateway as mikrotik1.
none interfaces haven’t proxy-arp

ZeroByte · January 4, 2016, 8:03pm

Do you want the users on the WiFi to be a part of the same IP network as user1 and user2?

If so, I recommend configuring it as a pure bridge with the IP address configured on the bridge interface.
e.g.
/interface ethernet

set ether2 - ether5 to use master=ether1

/interface bridge add name=bridge1
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=wlan1
/ip address add address=192.168.0.2/24 interface=bridge1
/ip route add dst=0.0.0.0/0 gateway=192.168.0.1

That should pretty much be the entire AP configuration except for the wireless settings.

If you want the WLAN to be its own separate IP network, then I recommend setting up a simple /30 point-to-point link between the tile router and the AP - e.g. 192.168.255.0/30 - with 192.168.255.1 = the tile router and 192.168.255.2 being the AP’s address on ether1.

Then connect the AP’s ether1 directly to the tile router on the interface where you configured the IP 192.168.255.1/30

Finally, on the AP, disable masquerade rules and set the default GW to be 192.168.255.1
and on the tile router, set a static route to whatever IP range is the wlan (e.g. 192.168.100.0/24) with the gateway=192.168.255.2

Of course, make sure the tile router will masquerade for the wlan IP range as well as the user1/user2 lan.

Green2mb · February 17, 2016, 2:09pm

Yes . I do it ! but on mikrotik 2 i can see connections from user1 to user2 (ip-firewall-connections)
why ?

Green2mb · February 17, 2016, 2:10pm

Green2mb · February 17, 2016, 2:11pm

Green2mb:

Green2mb:

ZeroByte:

Do you want the users on the WiFi to be a part of the same IP network as user1 and user2?

If so, I recommend configuring it as a pure bridge with the IP address configured on the bridge interface.
e.g.
/interface ethernet

set ether2 - ether5 to use master=ether1

/interface bridge add name=bridge1
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=wlan1
/ip address add address=192.168.0.2/24 interface=bridge1
/ip route add dst=0.0.0.0/0 gateway=192.168.0.1

That should pretty much be the entire AP configuration except for the wireless settings.

Yes . I do it ! but on mikrotik 2 i can see connections from user1 to user2 (ip-firewall-connections)
(user1 and user2 connected to switch and have default GW as mikrotik1)
why ?

ZeroByte · February 18, 2016, 2:22am

Check the MAC addresses of your routers’ interfaces - especially the bridge interfaces and ethernet interfaces.. make sure that they have different MAC addresses, and also make sure that mikrotik2 (the AP) has a different IP address than the tile router. You’re completely right to expect the AP to have nothing to do with user1 and user2 getting to the Internet through the tile router.

Green2mb · February 18, 2016, 10:21am

all MACs and all IPs are different .

I’m attach screen from Mikrotik 2 , all connection on this picture from devices where GW as mikrotik 1

Green2mb · February 18, 2016, 1:57pm

Thank 4 all !
Decide task on another way.
With out bridge and drop connection from lan to lan.