Community discussions

MikroTik App
 
Salem6664
just joined
Topic Author
Posts: 4
Joined: Sat Jun 18, 2022 11:58 pm

2 WAN ( 1 Static , One public) 2 Lan can communicate each other seeking help

Sun Jun 19, 2022 5:05 am

Good day
Am seeking your help please for figuring out how to setup Mikrotik RB750
we have 2 WAN connections and 2 LAN as well, the concern is how to allow these 2 LAN ( different subnet ) communicate each other . the network details are below:
ISP1: Static IP
IP:209.146.21.1X
GW:209.146.21.1Y
DNS:8.8.8.8

ISP2:
IP:192.168.0.X
GW:192.168.0.1
DNS:8.8.8.8

The LAN network must be:
LAN1:192.168.1.1 ( Our Okttel server located in 192.168.1.4).
LAN2:192.168.2.1 ( Our Server is located in 192.168.2.2).

am kindly asking for the help to set up with this please.
1- Main priority connection is for WAN1 ( ISP1)
2- The 2 LAN networks must communicate each other ( for users in network 192.168.1.x to be able to log in to the server 192.168.2.2).
 
Salem6664
just joined
Topic Author
Posts: 4
Joined: Sat Jun 18, 2022 11:58 pm

Re: 2 WAN ( 1 Static , One public) 2 Lan can communicate each other seeking help

Mon Jun 20, 2022 1:38 am

any one please ???
 
Sob
Forum Guru
Forum Guru
Posts: 9119
Joined: Mon Apr 20, 2009 9:11 pm

Re: 2 WAN ( 1 Static , One public) 2 Lan can communicate each other seeking help

Mon Jun 20, 2022 3:00 am

Without seeing your config, I assume that you have something (mangle rules, routing rules) that makes LANs use specific WAN. Otherwise there would be no problem and router would be happily routing between LANs. So it's probably something with that, and you want to exclude LAN->LAN traffic. How exactly, it depends on what you have now. Another possible explanations is firewall blocking the traffic.
 
Salem6664
just joined
Topic Author
Posts: 4
Joined: Sat Jun 18, 2022 11:58 pm

Re: 2 WAN ( 1 Static , One public) 2 Lan can communicate each other seeking help

Mon Jun 20, 2022 7:19 am

Without seeing your config, I assume that you have something (mangle rules, routing rules) that makes LANs use specific WAN. Otherwise there would be no problem and router would be happily routing between LANs. So it's probably something with that, and you want to exclude LAN->LAN traffic. How exactly, it depends on what you have now. Another possible explanations is firewall blocking the traffic.
Thank you for your response here is my settings, am sure there is something wrong , please help me out :

[admin@MikroTik] > export compact
# jun/18/2022 02:53:12 by RouterOS 6.49.6
# software id = 32W0-9I7B
#
# model = RB750Gr3
/interface ethernet
set [ find default-name=ether1 ] name=ether1-WAN1
set [ find default-name=ether2 ] name=ether2-WAN2
set [ find default-name=ether3 ] name=ether3-LAN1
set [ find default-name=ether4 ] name=ether4-LAN2
set [ find default-name=ether5 ] name=ether5-LAN3
/interface list
add name=WAN
add name=LAN
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=dhcp_pool0 ranges=192.168.1.20-192.168.1.254
add name=dhcp_pool1 ranges=192.168.2.20-192.168.2.254
/ip dhcp-server
add address-pool=dhcp_pool0 disabled=no interface=ether3-LAN1 name=dhcp1
add address-pool=dhcp_pool1 disabled=no interface=ether4-LAN2 name=dhcp2
/interface list member
add interface=ether1-WAN1 list=WAN
add list=LAN
/ip address
add address=192.168.1.1/24 interface=ether3-LAN1 network=192.168.1.0
add address=192.168.2.1/24 interface=ether4-LAN2 network=192.168.2.0
add address=209.146.21.18/23 interface=ether1-WAN1 network=209.146.20.0
/ip dhcp-client
add interface=ether1-WAN1
add disabled=no interface=ether2-WAN2
/ip dhcp-server network
add address=192.168.1.0/24 dns-server=8.8.8.8,8.8.4.4,192.168.2.2 gateway=192.168.1.1
add address=192.168.2.0/24 dns-server=8.8.8.8,8.8.4.4,192.168.2.2 gateway=192.168.2.1
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether1-WAN1
add action=masquerade chain=srcnat out-interface=ether2-WAN2
/ip route
add distance=1 gateway=209.146.21.17
/system clock
set time-zone-name=Asia/Manila
[admin@MikroTik] >
 
Sob
Forum Guru
Forum Guru
Posts: 9119
Joined: Mon Apr 20, 2009 9:11 pm

Re: 2 WAN ( 1 Static , One public) 2 Lan can communicate each other seeking help

Mon Jun 20, 2022 2:21 pm

If this is all you have, i.e. no firewall at all, there's nothing that would block traffic between LANs. Also router is open to whole world, which is not the best idea.
 
Salem6664
just joined
Topic Author
Posts: 4
Joined: Sat Jun 18, 2022 11:58 pm

Re: 2 WAN ( 1 Static , One public) 2 Lan can communicate each other seeking help

Mon Jun 20, 2022 3:55 pm

If this is all you have, i.e. no firewall at all, there's nothing that would block traffic between LANs. Also router is open to whole world, which is not the best idea.
Thank you Sob
so where we can start fixing it which part please ?
 
Sob
Forum Guru
Forum Guru
Posts: 9119
Joined: Mon Apr 20, 2009 9:11 pm

Re: 2 WAN ( 1 Static , One public) 2 Lan can communicate each other seeking help

Thu Jun 23, 2022 4:46 am

The problem you asked about (communication between LANs) shouldn't exist, it should work. As for firewall, good approach is to allow what you need and block the rest. Example if which can be seen at the beginning of this thread:

viewtopic.php?t=180838

In your case it would also need to allow communication between ether3-LAN1 and ether4-LAN2, so two rules (for both directions).

Who is online

Users browsing this forum: kevinlukas, mkx and 37 guests