Community discussions

MikroTik App
User avatar
just joined
Topic Author
Posts: 3
Joined: Sun Jan 11, 2015 4:55 pm

DNS issue - Unable to ping internal names

Wed Oct 06, 2021 10:38 pm

I am setting up an RB460g and I can not ping names in some instances.

From a client on the segment:
* I can ping IPs and names on the internet without a problem
* I can ping IPs but not names on my existing (parent) segment ( - see below for setup) by IP (Linux says: temporary failure in name resolution). Same results from the RB terminal.
* I can't ping a name (xxyyzz) that I've setup a static entry for on the RBs DNS to an IP ( but ping to IP works fine. In the RB terminal a ping to the name xxyyzz works fine.

I wiped the router completely then followed basic setup ... figuration . I noted there was no info about DNS in it so I did what I thought was correct.

I am presently testing with the RB setup under the existing router (a NetGear wireless router) so my RB450g WAN/Eth1 is plugged into it and my testing machines are downstream (Eth2 - Eth5) of the RB. I'll retire the NetGear as a router once things are working. The NetGear segment is and the RB segment is Most my stuff is on the segment for now, with testing equipment on the segment.

Feel free to point out any other badly configured stuff or suggestions - my feelings won't be hurt ;)

Here's my export:
# oct/06/2021 15:09:31 by RouterOS 6.32.3
# software id = XFBU-EHZP
/interface bridge
add name=local
/ip neighbor discovery
set ether1 discover=no
set ether2 discover=no
set ether3 discover=no
set ether4 discover=no
set ether5 discover=no
/ip pool
add name=dhcp_pool1 ranges=
/ip dhcp-server
add address-pool=dhcp_pool1 disabled=no interface=local name=dhcp1
/interface bridge port
add bridge=local interface=ether2
add bridge=local interface=ether3
add bridge=local interface=ether4
add bridge=local interface=ether5
/ip address
add address= interface=local network=
/ip cloud
set update-time=no
/ip dhcp-client
add dhcp-options=hostname,clientid disabled=no interface=ether1
/ip dhcp-server network
add address= dns-server=,, gateway=\ netmask=24
/ip dns
set allow-remote-requests=yes servers=,
/ip dns static
add address= name=xxyyzz
/ip firewall filter
add chain=input comment="accept established,related" connection-state=\
add action=drop chain=input connection-state=invalid
add chain=input comment="allow ICMP" in-interface=ether1 protocol=icmp
add chain=input comment="allow Winbox" in-interface=ether1 port=8291 \
add chain=input comment="allow SSH" in-interface=ether1 port=22 protocol=tcp
add action=drop chain=input comment="block everything else" in-interface=\
add action=fasttrack-connection chain=forward comment=\
    "fast-track for established,related" connection-state=established,related
add chain=forward comment="accept established,related" connection-state=\
add action=drop chain=forward connection-state=invalid
add action=drop chain=forward comment=\
    "drop access to clients behind NAT form WAN" connection-nat-state=!dstnat \
    connection-state=new in-interface=ether1
/ip firewall nat
add action=masquerade chain=srcnat out-interface=ether1
/ip ssh
set strong-crypto=yes
/ip traffic-flow
set enabled=yes
/system clock
set time-zone-name=America/Detroit
/tool bandwidth-server
set enabled=no
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=local

Who is online

Users browsing this forum: mikeeg02, Semrush [Bot], wotoni and 39 guests