Community discussions

MikroTik App
 
User avatar
osc86
Member Candidate
Member Candidate
Topic Author
Posts: 197
Joined: Wed Aug 09, 2017 1:15 pm

Management Services not accessible from VRF

Wed May 05, 2021 4:58 pm

Hello,
today I moved an interface to a new vrf. I want to create some kind of oobm interface with separate routing for management access only, so I can play around without losing access to the router.
After I did that the device wasn't reachable anymore using winbox or ssh, ping still worked.. I added the device to the VRF, and a default route using the routing mark for the vrf.
But even from within the same subnet, winbox won't connect. Firewall is disabled.
Is there anything else required to make this work, or are the management services of RouterOS not vrf aware? I couldn't find anything in the wiki about this use case.
Tried this on a hEX running 6.48.2.

Edit: As a workaround I've added a dnat rule pointing to a loopback ip and added a route rule for the connection back into the management vlan.

Who is online

Users browsing this forum: Google [Bot], GoogleOther [Bot] and 78 guests