Hi,
This is my first post on the forum. I have a router A that is connected to my fiber with a static ip 38.104.xxx.xxx . My router A has on the Ethernet 2 a wi-fi connection to my router B on the top of the mountain. The provider has given me a /25 pubic address list on 38.102.XXX.XXX range that I want to allocate to my customers which are connecting with DHCP on my router B. For the wi-fi connection that I wanted to be able to talk to, I created also another 192.168.2.1/24 list of ip on that ethernet 2.
What I did is I create the address list on router A the address list and added /ip route 38.102.xxx.xxx/25 with gatheway ether 2 . That didn`t work or at least one of the router doesn`t know what to do. On Router B, I created on one ethernet port the static address for one to test and I can't ping from Router A to Router b.
Can you advise what I missed here because I am going nuts with this simple thing.
Regards
Re: using public address on router b not working with router
Please post a network diagram (a drawing of how things connect, including port names) as well as the output of "/ip address print detail", "/ip route print detail" and "/ip firewall export" from both routers wrapped in [ code ] tags.
Re: using public address on router b not working with router
Firewall Router A:
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment=\
"place hotspot rules here" disabled=yes
/ip firewall nat
add action=passthrough chain=unused-hs-chain comment=\
"place hotspot rules here" disabled=yes
add action=masquerade chain=srcnat comment="" disabled=no src-address=\
192.168.3.0/24
add action=masquerade chain=srcnat comment="" disabled=no src-address=\
192.168.2.0/24
add action=dst-nat chain=dstnat comment="" disabled=no dst-address=\
38.102.xx.1 to-addresses=192.168.2.246
add action=accept chain=srcnat comment="" disabled=no src-address=\
38.102.xx.0/25
B - blackhole, U - unreachable, P - prohibit
0 A S dst-address=0.0.0.0/0 gateway=38.104.xxx.xxx
gateway-status=38.104.xxx.xxx reachable ether1 distance=1 scope=30
target-scope=10
1 A S dst-address=38.102.xxx.0/25 gateway=192.168.2.246
gateway-status=192.168.2.246 reachable ether2 distance=2 scope=30
target-scope=10
2 ADC dst-address=38.104.xxx.xx/30 pref-src=38.104.xxx.xx gateway=ether1
gateway-status=ether1 reachable distance=0 scope=10
3 ADC dst-address=192.168.2.0/24 pref-src=192.168.2.1 gateway=ether2
gateway-status=ether2 reachable distance=0 scope=10
4 ADC dst-address=192.168.3.0/24 pref-src=192.168.3.1 gateway=ether3
gateway-status=ether3 reachable distance=0 scope=10
Router B:
0 ADS dst-address=0.0.0.0/0 gateway=192.168.2.1
gateway-status=192.168.2.1 reachable ether1 distance=0 scope=30
target-scope=10
1 S dst-address=0.0.0.0/0 gateway=ether1 gateway-status=ether1 reachable
distance=1 scope=30 target-scope=10
2 ADC dst-address=38.102.xxx.1/32 pref-src=38.102.xxx.2 gateway=ether2
gateway-status=ether2 reachable distance=0 scope=10
3 ADC dst-address=192.168.1.0/24 pref-src=192.168.1.1 gateway=ether9
gateway-status=ether9 unreachable distance=0 scope=200
4 ADC dst-address=192.168.2.0/24 pref-src=192.168.2.246 gateway=ether1
gateway-status=ether1 reachable distance=0 scope=10
5 ADC dst-address=192.168.103.0/24 pref-src=192.168.103.1 gateway=ether3
gateway-status=ether3 reachable distance=0 scope=10
6 ADC dst-address=192.168.104.0/24 pref-src=192.168.104.1 gateway=ether4
Too many rules on the router B that are not associated to the 38.102.xxx.xxx addresses
LIke I said before, I want router A to talk to the public i.p. that are managed on router B.
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment=\
"place hotspot rules here" disabled=yes
/ip firewall nat
add action=passthrough chain=unused-hs-chain comment=\
"place hotspot rules here" disabled=yes
add action=masquerade chain=srcnat comment="" disabled=no src-address=\
192.168.3.0/24
add action=masquerade chain=srcnat comment="" disabled=no src-address=\
192.168.2.0/24
add action=dst-nat chain=dstnat comment="" disabled=no dst-address=\
38.102.xx.1 to-addresses=192.168.2.246
add action=accept chain=srcnat comment="" disabled=no src-address=\
38.102.xx.0/25
B - blackhole, U - unreachable, P - prohibit
0 A S dst-address=0.0.0.0/0 gateway=38.104.xxx.xxx
gateway-status=38.104.xxx.xxx reachable ether1 distance=1 scope=30
target-scope=10
1 A S dst-address=38.102.xxx.0/25 gateway=192.168.2.246
gateway-status=192.168.2.246 reachable ether2 distance=2 scope=30
target-scope=10
2 ADC dst-address=38.104.xxx.xx/30 pref-src=38.104.xxx.xx gateway=ether1
gateway-status=ether1 reachable distance=0 scope=10
3 ADC dst-address=192.168.2.0/24 pref-src=192.168.2.1 gateway=ether2
gateway-status=ether2 reachable distance=0 scope=10
4 ADC dst-address=192.168.3.0/24 pref-src=192.168.3.1 gateway=ether3
gateway-status=ether3 reachable distance=0 scope=10
Router B:
0 ADS dst-address=0.0.0.0/0 gateway=192.168.2.1
gateway-status=192.168.2.1 reachable ether1 distance=0 scope=30
target-scope=10
1 S dst-address=0.0.0.0/0 gateway=ether1 gateway-status=ether1 reachable
distance=1 scope=30 target-scope=10
2 ADC dst-address=38.102.xxx.1/32 pref-src=38.102.xxx.2 gateway=ether2
gateway-status=ether2 reachable distance=0 scope=10
3 ADC dst-address=192.168.1.0/24 pref-src=192.168.1.1 gateway=ether9
gateway-status=ether9 unreachable distance=0 scope=200
4 ADC dst-address=192.168.2.0/24 pref-src=192.168.2.246 gateway=ether1
gateway-status=ether1 reachable distance=0 scope=10
5 ADC dst-address=192.168.103.0/24 pref-src=192.168.103.1 gateway=ether3
gateway-status=ether3 reachable distance=0 scope=10
6 ADC dst-address=192.168.104.0/24 pref-src=192.168.104.1 gateway=ether4
Too many rules on the router B that are not associated to the 38.102.xxx.xxx addresses
LIke I said before, I want router A to talk to the public i.p. that are managed on router B.
Re: using public address on router b not working with router
Figured it out by myself, I missed a gateway on the destination machine so it didn`t know where to send back the output.