The groove is setup in CPE mode and is currently connected to my home network. I configured CPE and portforwarding using the Quick Set menu.
Using random subnets as examples
Home network: 10.0.0.0/24
Groove Wifi (WAN): 10.0.0.80
Groove LAN/NAT: 10.0.80.0/24 (Groove LAN IP/gateway is 10.0.80.1)
Raspberry PI: 10.0.80.80
I am able to access the webfig fine from my home network, but not able to ping or SSH into the raspberry PI from the home network. If I ping or SSH from RouterOS directly, I can access the RaspberryPI fine, so its definitely configured correctly, but as soon as I try to ping or SSH from outside of the 10.0.80.0 network, it cannot connect at all.
ssh -p 2222 user@10.0.0.80 just results in connection timeout
RouterOS config is as follows:
Code: Select all
[admin@MikroTik] > export
# mar/25/2023 08:42:02 by RouterOS 7.8
# software id = M4F6-SY6L
#
# model = RBGrooveGA-52HPacn
/interface bridge
add admin-mac=XXXX auto-mac=no comment=defconf name=bridgeLocal
/interface wireless
set [ find default-name=wlan1 ] band=5ghz-a/n/ac disabled=no ssid=XXXX wireless-protocol=nv2-nstreme-802.11
/interface list
add name=WAN
add name=LAN
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa-psk,wpa2-psk group-ciphers=tkip,aes-ccm mode=dynamic-keys supplicant-identity=MikroTik unicast-ciphers=tkip,aes-ccm
/ip hotspot profile
set [ find default=yes ] html-directory=hotspot
/ip pool
add name=dhcp ranges=10.0.80.100-10.0.80.200
/ip dhcp-server
add address-pool=dhcp interface=bridgeLocal name=dhcp1
/interface bridge port
add bridge=bridgeLocal comment=defconf interface=ether1
/interface list member
add interface=wlan1 list=WAN
add interface=bridgeLocal list=LAN
/interface wireless cap
set bridge=bridgeLocal discovery-interfaces=bridgeLocal interfaces=wlan1
/ip address
add address=10.0.80.1/24 interface=bridgeLocal network=10.0.80.0
/ip dhcp-client
add comment=defconf interface=bridgeLocal
add interface=wlan1
/ip dhcp-server lease
add address=10.0.80.80 client-id=XXXX mac-address=XXXX server=dhcp1
/ip dhcp-server network
add address=0.0.0.0/24 dns-server=0.0.0.0 gateway=0.0.0.0 netmask=24
add address=10.0.80.0/24 dns-server=10.0.80.1 gateway=10.0.80.1 netmask=24
/ip firewall nat
add action=masquerade chain=srcnat out-interface-list=WAN
add action=dst-nat chain=dstnat comment=SSH dst-port=2222 in-interface-list=WAN protocol=tcp to-addresses=10.0.80.80 to-ports=22