Hello,
I’m building a little personal wisp using the only one internet channel provided by my company.
I need to keep isolated work networks and this wisp network.
I’m going to try explain my situation.
I have a internet access provided by a local ISP with a ISP router.
This router is connected to an external port (eth0) of my wahtcguard XTM510 firewall.
ISP gives me /29 public IPs. So 6 usable IPs. But right now I have only 1 IP free. I want to use it for the WISP environment.
ok, this is my current situation:
A Nanostation M5 in installed on the top of the roof as an Access Point WDS with Bridge network mode and Management VLAN enabled with ID = 45: 192.168.222.244/24 (gw: 192.168.222.254)
A Mikrotik router RB750GL with
- eth1 as bridge brWAN
- eth2,eth3,eth4 as bridge brDMZ
- eth5 as bridge brLAN
brWAN connects to XTM510 Firewall to access the internet.
brLAN connects to my own company LAN, so I can manage the devices from my office.
brDMZ connetcs to Nanostation M5 with a VLAN interface ID 45 to intercept the Management network ( 192.168.222.254/24).
I tried to be very light with a easy implementation.
So… now.. NEXT step: prepare customers/clients network.
I think to do a /30 network that connect my RB750 router to theirs, one by one.
Otherwise What can I do?
You have to know I have only one customer/client right now.. but I want to be open up to 5.
thx