Hello All,
I've read almost every topic I've found here (and somewhere else too) that could by close to my set-up, but unfortunately - nothing gave me the answer. Also, all of my tries went to nowhere.
Here's my setup:
1 x RBSXTR with LTE passthrough to VLAN "vlan1_sxt" and second VLAN "vlan100_mgmt" (for managing purposes)
1 x RBLHGR with LTE passthrough to VLAN "vlan2_lhg" and second VLAN "vlan100_mgmt" (for managing purposes)
1 x RB750 as main router with all 5 ports bridged together with 5 VLANs: vlan1_sxt, vlan2_lhg, vlan100_mgmt, vlan200_lan1, vlan201_lan2
1 x RB750 as a switch for IP cameras with ETH1-ETH4 bridged with "vlan201_lan2" (interface: ETH5) and "vlan100_mgmt" on ETH5. The clients connected to ports 1-4 are getting correct IP address from dhcp server on main router. Also - I can access this device and main router from client connected to ETH1-4
1 x cAP managed by CAPsMAN on main router with two separate SSIDs connected to VLAN's 200 and 201. WiFi clients are getting correct addresses corresponding to their VLAN's.
Every device can ping each other on the network (whole traffic between subnets is temporarily allowed for testing purposes).
But, no device (network device or client computers) can access WAN / Internet.
On my main router I have two mangle rules for each of subnets (LAN1 & LAN2) that's marking routing for the packets.
In routing table I have two routes to 0.0.0.0/0 for each routing mark and for it's designed gateway.
In NAT I have defined two masquerades, one for each VLAN (vlan1_sxt & vlan2_lhg).
When I try to ping anything outside my local network - I can see the packets are being sent correctly, and they're coming back to my main router, but then - they disappear. It seems that my main router is unable to correctly route the server's reply back to the device that initiated the connection.
Please help my out with this. I have no more ideas what can be wrong and without it - I can't move to my summer house :(