Well, static ARP entries will allow you to see which addresses are used.
IP>ARP

Hi! If you are using DHCP server for that customer facing interface, then I would suggest the following: 1) add in DHCP server configuration "add arp for leases"; 2) change ARP on customer facing interface from enabled to disabled; It will prevent ARP entries not added by either DHCP serve...

Thanks but I want both subnets (4.x and 1.x) see each other and at the same time the users of 1.x use the gateway 4.1. Please, advise. BR I'm sorry but that doesn't really make sense, because that contradicts the request for the networks to not be natted. You currently have 4.4 set as default gatew...

Hi, you should consider using simple queue.
Add target as your webserver internal IP, destination as your WAN interface.
Set MAX limit on download\upload as you need.

Hi! I would say, that bummer. Even making sure hotspot listens on both http and https ports would not help you much. We've abandoned attempts to solve that issue because of the idea behind https. To present you with a login page, hotspot redirects traffic to its own webserver. Whenever that happens ...

Hi! Either you've got a too many of things wrong or did not specify them in the description, I kindly suggest to read basic installation manual. For starters: 1) what are NAT rules for HQ router modem? 2) Did you add anything else to SRC NAT in HQ mikrotik? 3) What kind of VPN is being used? P.s. I ...

Hi, I need a little help. I have a Mikrotik CCR router with interface that has several public IP's. I also have DST-NAT rules (port forward) where i use public IP's and port forward (DST-NAT) external ports to internal server. I need to achieve that a return packet is sent with SRC IP = public IP t...

Hi Hairyone, just trying to follow the thread, is the wan setup as follows. Block of IPs from provider given to you. USING 172.168.1.1 as the one assigned to the mikrotik (for the purposes of a private LAN behind and administration) (many to one NAT) Using 172.168.1.2 - 172.168.1.4 as 3 public IP a...

This redirect makes me think that router somehow considers 10.0.1.4 and 10.0.0.147 to be part of same subnet? Are router's addresses set with correct netmask? It seems like /24 was the correct one. Exactly - both networks are on same physical interface, but on separate subnets. Netmasks are /24 for...

You can make interface lists LAN and WAN, put the appropriate interfaces in them, and use interface lists for input and output. In fact when you have setup the router under a recent version those interface lists are already there. When you have started in the past on an old version and upgraded it ...

You better assign input and output interfaces in rules. That will require to create multiple rules - one for in interface LAN, one for in interface WAN, another for possible IPIP interfaces. By omitting interface, and leaving only DST\SRC address, I can have one rule for any interface that comes in...

Good day people! Maybe someone had encountered weird SRC/DST NAT issue on 6.42.1 (upgrade), here are the details: Two network on LAN: 10.0.0.0/24 - workstations with IPs 10.0.0.2 and 10.0.0.3 (Mikrotik is on 10.0.0.1) 10.0.1.0/24 - DMZ servers with IPs 10.0.1.2, 10.0.1.3, 10.0.1.4 (Mikrotik is on 10...