I have a Mikrotik CRS. I receive a trunk on one of it’s ports with vlan20 in it (192.168.20.x) . My computer is in vlan20 on a Mikrotik RB260GS switch. Native vlan of the CRS is 192.168.100.x . All works well, I have full network connectivity on all my machines and VMs in native vlan or tagged vlans.
What doesn’t work is I’m not able to manage my CRS. I cannot reach it via network interface or winbox from my computer in vlan20. I am only able to manage it if I plug in directly in one of the ether ports that has the native vlan.
I would really like to manage it from vlan20. What am I forgetting?
Some additional information. When opening Winbox the CRS is detected with IP 0.0.0.0 and the MAC address.
I cannot connect to it. When pinging the IP address of the Mikrotik (which is in the native vlan) I do not get a response or entry in the arp cache of my machine.
What firewall rules do you have in place? Do you have any rules in place that could restrict access to the winbox or web interface ports from certain IP ranges? You’d need to specifically look at the INPUT chain.
Also take a look at ‘/ip service’ and see if there are any subnet restrictions under the address column.
Sorry, I don’t have access to a Mikrotik device at the minute.
Brilliant.. that’s it! Just added another ip address 192.168.20.xxx/24 network 192.168.20.1 to my vlan20 interface and I could immediately access my CRS from my PC. Thanks!