Hello,
I have two mikrotik routers setup and running in separate countries. Both have Zerotier installed, and one is acting as a Zerotier internet gateway route.
The second unit is a L009 unit. It is configured as a standard router with routes to the local ISP.
I’d like to isolate ports 7 and 8 from the main bridge, and have any device connecting to them grab a dhcp ip address, and route the packets through the first Mikrotik router. I’ve attempted to create a second bridge, move ports 7, 8, and zt1 into it, created a dhcp pool, and set the gateway to the first Mikrotik zerotier address. I expected that the clients would pick up a zerotier ip address, and their packets would be bridged seamlessly to the first router, and out to the internet… That is not happening.
When this was setup, the main bridge started having intermittent connectivity issues where it seemed the ‘Allow Default’ routing was still overwriting the main route table. Disabling the ‘Allow Default’ didn’t seem to allow any packets from the bridge to pass. Adding the ZT gateway route to the manually created routing table ‘zt-lan’ didn’t seem to work either, and 0.0.0.0/0 seemed to move to the main route table, reguardless of what it was set to. Additionally, I was seeing traffic going out from the zt1 interface, but nothing coming back.
Clients with zerotier can connect directly and works as expected, but this setup seems to be mangled.
Could anyone help explain what would be the best method to isolate the two ports, and have their traffic exit from the remote Mikrotik router, while leaving the other ports working with the existing local isp connection.
I’ve looked at using vlans, PBR, and even BGP… too many options for something that should be fairly simple.
Thanks!