Hi,
Wonder if someone can check this for me.
I have very basic setup.
I have 2 internet lines coming into the office
Port 1 >>> Main Internet
Port 2 >>> ADSL
As it stands, I am wanting to get ADSL working on Port WAN2 of Mikrotik RB2011 iL iN model and I am failing
The cable from ADSL when I put it straight into my laptop gives me DHCP and gateway of 192.168.0.1 and when I plug this cable into Mikrotik Port1, I can internet straight away. However, I want to use Port2 of Mikrotik for this connection.
I have got VLANs and all that setup and working as it should.
I have added mangle / nat / masquerade rules etc and ip route configured. but I must be missing something very vital and unable to find out what is it.
Can you check for me?
I don't mind starting from scratch if its all cocked up? Please assist?
My config below:
export compact
# jan/02/1970 00:02:11 by RouterOS 6.15
# software id = M2HJ-YYRV
#
/interface bridge
add admin-mac=4C:5E:0C:72:2F:7C auto-mac=no l2mtu=1598 name=bridge-local
/interface ethernet
set [ find default-name=ether1 ] name="WAN1"
set [ find default-name=ether2 ] name="WAN2"
set [ find default-name=ether9 ] name="ether9- Management"
set [ find default-name=ether10 ] master-port=ether6 name=ether10-slave-local
/ip neighbor discovery
set "WAN1" discover=no
/interface vlan
add interface=ether6 l2mtu=1594 name=Office vlan-id=10
add interface=ether6 l2mtu=1594 name=VOIP vlan-id=100
/ip hotspot user profile
set [ find default=yes ] idle-timeout=none keepalive-timeout=2m \
mac-cookie-timeout=3d
/ip pool
add name=default-dhcp ranges=192.168.88.100-192.168.88.254
add name=Port9Pool ranges=192.168.55.10-192.168.55.30
add name=NetcomOffice ranges=10.4.0.50-10.4.0.100
add name=VOIPIPPOOL ranges=10.2.0.100-10.2.0.200
/ip dhcp-server
add address-pool=default-dhcp disabled=no interface=bridge-local lease-time=\
10m name=default
add address-pool=Port9Pool disabled=no interface="ether9- Management" name=\
Port9DHCP
add address-pool=NetcomOffice disabled=no interface=Office name=\
NetcomOfficeDHCP
add address-pool=VOIPIPPOOL disabled=no interface=VOIP name=VOIPDHCP
/interface bridge port
add bridge=bridge-local interface=ether3
add bridge=bridge-local interface=ether4
add bridge=bridge-local interface=ether5
add bridge=bridge-local interface=ether6
/ip address
add address=192.168.88.1/24 comment="default configuration" interface=\
bridge-local network=192.168.88.0
add address=145.255.245.145/32 disabled=yes interface="WAN1" network=\
255.255.255.224
add address=192.168.55.1/24 interface="ether9- Management" network=\
192.168.55.0
add address=192.168.0.4/24 interface="WAN2" network=192.168.0.0
add address=10.4.0.1/24 interface=NetcomOffice network=10.4.0.0
add address=10.2.0.1/24 interface=VOIP network=10.2.0.0
/ip dhcp-client
add comment="default configuration" dhcp-options=hostname,clientid disabled=no \
interface="WAN1"
/ip dhcp-server network
add address=10.4.0.0/25 comment=Office dns-server=10.4.0.254 gateway=\
10.4.0.254
add address=192.168.55.0/24 dns-server=192.168.55.254 gateway=192.168.55.254
add address=192.168.88.0/24 comment="default configuration" dns-server=\
192.168.88.1 gateway=192.168.88.1
/ip dns
set allow-remote-requests=yes servers=8.8.8.8
/ip dns static
add address=192.168.88.1 name=router
/ip firewall filter
add chain=input comment="default configuration" protocol=icmp
add chain=input comment="default configuration" connection-state=established
add chain=input comment="default configuration" connection-state=related
add chain=forward comment="default configuration" connection-state=established
add chain=forward comment="default configuration" connection-state=related
add action=drop chain=forward comment="default configuration" \
connection-state=invalid
add action=drop chain=input comment="default configuration" in-interface=\
"WAN2"
/ip firewall mangle
add action=mark-connection chain=input in-interface="WAN2" \
new-connection-mark=WAN2_conn
add action=mark-routing chain=output connection-mark=WAN2_conn \
new-routing-mark=to_WAN2
add chain=prerouting dst-address=192.168.0.0/24 in-interface=\
"WAN2"
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" \
out-interface="WAN1" to-addresses=0.0.0.0
add action=masquerade chain=srcnat out-interface="WAN2"
/ip route
add check-gateway=ping distance=1 gateway=192.168.0.4 routing-mark=to_WAN2
set allow-disable-external-interface=no
/tool mac-server
set [ find default=yes ] disabled=yes
add interface="WAN2"
add interface=ether3
add interface=ether4
add interface=ether5
add interface=ether6
add interface=ether7
add interface=ether8
add interface="ether9- Management"
add interface=ether10-slave-local
add interface=bridge-local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface="WAN2"
add interface=ether3
add interface=ether4
add interface=ether5
add interface=ether6
add interface=ether7
add interface=ether8
add interface="ether9- Management"
add interface=ether10-slave-local
on top of all that, I also have these configured in FILTER
/ip firewall filter
add chain=input comment="default configuration" protocol=icmp
add chain=input comment="default configuration" connection-state=established
add chain=input comment="default configuration" connection-state=related
add chain=forward comment="default configuration" connection-state=established
add chain=forward comment="default configuration" connection-state=related
Re: Help needed - Unable to get WAN working
Hello,
Check your default route, your gateway is 192.168.0.4 it should be 192.168.0.1 (modem address). Or in /ip address, your WAN2 address is wrong.
Check your default route, your gateway is 192.168.0.4 it should be 192.168.0.1 (modem address). Or in /ip address, your WAN2 address is wrong.
-
-
innocentdevil
newbie
- Posts: 31
- Joined:
Re: Help needed - Unable to get WAN working
hello evince,
many thanks.
If I plug the cable from router into Port1, it automatically adds the route of 192.168.0.4/24 to it.
I have tried with route of 192.168.0.1 and it doesn't work.
Also, correct me if I am wrong, I have the following IP address assigned to Port2
192.168.0.0/24
thanks
many thanks.
If I plug the cable from router into Port1, it automatically adds the route of 192.168.0.4/24 to it.
I have tried with route of 192.168.0.1 and it doesn't work.
Also, correct me if I am wrong, I have the following IP address assigned to Port2
192.168.0.0/24
thanks
Re: Help needed - Unable to get WAN working
Hello, i don't realy understand your config 
Try this : disable Ip address on WAN2 and enable dhcp client on this interface (WAN2). Do not understand to check the default route box.
Then you should receive an ip with a route.
Try this : disable Ip address on WAN2 and enable dhcp client on this interface (WAN2). Do not understand to check the default route box.
Then you should receive an ip with a route.
-
-
innocentdevil
newbie
- Posts: 31
- Joined:
Re: Help needed - Unable to get WAN working
its all right.
I got it working.
I was configuring default route wrong
I got it working.
I was configuring default route wrong