Community discussions

MikroTik App
 
User avatar
Tony359
just joined
Topic Author
Posts: 24
Joined: Fri Dec 02, 2022 12:31 am

Routing issue

Mon May 22, 2023 6:48 pm

Hi all,

I'm sure this is a basic question but I can't figure out this by myself.

I have an hAP ac3 and the following network configuration
network2.JPG
I need to be able to access BOTH networks 1 and 2 when I am on WiFi. The router has always worked connecting WiFi to Network 1 and internet. Today I added Network 2 on ETH2 but I cannot access the devices on Network 2 when on WiFi.

I can ping them though, from the terminal of the router itself.

What am I missing here?

Thank you!
Tony
You do not have the required permissions to view the files attached to this post.
 
User avatar
anav
Forum Guru
Forum Guru
Posts: 18958
Joined: Sun Feb 18, 2018 11:28 pm
Location: Nova Scotia, Canada
Contact:

Re: Routing issue

Mon May 22, 2023 8:29 pm

/export file=anynameyouwish ( minus router serial number and any public WANIP info )
 
User avatar
Tony359
just joined
Topic Author
Posts: 24
Joined: Fri Dec 02, 2022 12:31 am

Re: Routing issue

Mon May 22, 2023 8:48 pm

Thank you. I have re-named the network to 111 and 222, I hope it's clear enough.

Looking at the configuration, I stumbled into this:

/ip dns static
add address=192.168.88.1 comment=defconf name=router.lan

I don't have that IP in my network, where is that coming from?

Thank you!
You do not have the required permissions to view the files attached to this post.
 
holvoetn
Forum Guru
Forum Guru
Posts: 5317
Joined: Tue Apr 13, 2021 2:14 am
Location: Belgium

Re: Routing issue

Mon May 22, 2023 8:50 pm

defconf = default configuration

Where are leases from 10.12.245.0/24 network coming from ?
Direct management via internet without VPN before ? Hmmm ... not my preference.
Last edited by holvoetn on Mon May 22, 2023 9:05 pm, edited 1 time in total.
 
User avatar
Tony359
just joined
Topic Author
Posts: 24
Joined: Fri Dec 02, 2022 12:31 am

Re: Routing issue

Mon May 22, 2023 9:02 pm

Yes, but where can I find that 192.168.88.1 and what is that DNS Static? I set my DNS to 8.8.8.8 and 8.8.4.4 under IP/DNS

I was given 10.12.245.110 by the system administrator of that network to be used by the router. If you are asking if there is a DHCP on that network, I am not sure but I'd hope that .245 is outside of the pool.

I hope this answers your question, please do ask if you need more details!
Thanks
Tony
 
tdw
Forum Guru
Forum Guru
Posts: 1841
Joined: Sat May 05, 2018 11:55 am

Re: Routing issue

Mon May 22, 2023 9:19 pm

For static DNS entries select IP>DNS from the menu, then Static button.

The Mikrotik will route packets from 192.168.100.x to 10.12.245.x, but those devices have no idea where to reply to unless they, or their default gateway device, have a static route of 192.168.100.0/24 via 10.12.245.110. The simplest fix is to NAT traffic from 192.168.100.x so it appears to originate from 10.12.245.110 with an additional NAT rule:
/ip firewall nat
add action=masquerade chain=srcnat ipsec-policy=out,none out-interface-list=222
 
User avatar
Tony359
just joined
Topic Author
Posts: 24
Joined: Fri Dec 02, 2022 12:31 am

Re: Routing issue

Mon May 22, 2023 9:38 pm

I thought something similar but I thought that since the Mikrotik is actually on the network with 10.12.245.110, it would be enough. I was missing the NAT rule, thank you!!

I've just tried and it seems to be working, thank you SO MUCH for your time, I do appreciate that.

So I didn't have that issue with the other network because it also happens to be the WAN and there is a firewall rule for that already?

I found the "static DNS" entry - how does that differ from the DNS I input in the main DNS screen?
 
tdw
Forum Guru
Forum Guru
Posts: 1841
Joined: Sat May 05, 2018 11:55 am

Re: Routing issue

Mon May 22, 2023 10:07 pm

So I didn't have that issue with the other network because it also happens to be the WAN and there is a firewall rule for that already?
Yes, as part of the default configuration.

I found the "static DNS" entry - how does that differ from the DNS I input in the main DNS screen?
The addresses on the main DNS screen are for the server(s) to be queried when resolving DNS requests, the static DNS entries are used in preference for any matching request.

Normally used to provide internal hostname-to-address mappings for private addresses which wouldn't be resolved by an external server. With the default configuration you can access the Mikrotik using the address 'router.lan' as it resolves to 192.168.88.1 independently of any external DNS server.
 
User avatar
Tony359
just joined
Topic Author
Posts: 24
Joined: Fri Dec 02, 2022 12:31 am

Re: Routing issue

Tue May 23, 2023 11:14 am

Oh, that is very interesting.

Thank you for your help and explanation!

Who is online

Users browsing this forum: Bing [Bot], nepotu, outtahere, Semrush [Bot] and 70 guests