I bought a RouterBoard 750 hEX Lite, because we have 2 different families in our house with 2 ISPs and would like to share a network printer.
We cannot change very much within the configuration of the 2 different routers from our ISPs.
But perhaps it is possible that we don't need to share our internet connections while sharing one network printer.
So I started to make some tests and this is my rotten configuration so far:
Code: Select all
# oct/13/2016 21:01:37 by RouterOS 6.37.1
# software id = XXXX-XXXX
#
/interface ethernet
set [ find default-name=ether1 ] name=Port1_LAN1
set [ find default-name=ether2 ] name=Port2_WAN1
set [ find default-name=ether3 ] name=Port3_LAN2
set [ find default-name=ether4 ] name=Port4_WAN2
set [ find default-name=ether5 ] name=Port5_LAN3
/interface list
add name=list_drop_LAN2
add name=list_drop_LAN1
/ip hotspot profile
set [ find default=yes ] html-directory=flash/hotspot
/ip pool
add name=dhcp_pool_LAN1 ranges=192.168.1.100-192.168.1.199
add name=dhcp_pool_LAN2 ranges=192.168.3.100-192.168.3.199
add name=dhcp_pool_LAN3 ranges=192.168.5.100-192.168.5.199
/ip dhcp-server
add address-pool=dhcp_pool_LAN1 disabled=no interface=Port1_LAN1 lease-time=\
3d name=dhcp_LAN1
add address-pool=dhcp_pool_LAN2 disabled=no interface=Port3_LAN2 lease-time=\
3d name=dhcp_LAN2
add address-pool=dhcp_pool_LAN3 disabled=no interface=Port5_LAN3 name=\
dhcp_LAN3
/system logging action
set 0 memory-lines=100
set 1 disk-lines-per-file=100
/interface list member
add interface=Port3_LAN2 list=list_drop_LAN1
add interface=Port4_WAN2 list=list_drop_LAN1
add interface=Port1_LAN1 list=list_drop_LAN2
add interface=Port2_WAN1 list=list_drop_LAN2
/ip address
add address=192.168.1.10/24 interface=Port1_LAN1 network=192.168.1.0
add address=192.168.2.10/24 interface=Port2_WAN1 network=192.168.2.0
add address=192.168.3.10/24 interface=Port3_LAN2 network=192.168.3.0
add address=192.168.4.10/24 interface=Port4_WAN2 network=192.168.4.0
add address=192.168.5.10/24 interface=Port5_LAN3 network=192.168.5.0
/ip dhcp-server network
add address=192.168.1.0/24 dns-server=192.168.1.10 gateway=192.168.1.10 \
netmask=24
add address=192.168.3.0/24 dns-server=192.168.3.10 gateway=192.168.3.10
add address=192.168.5.0/24 dns-server=192.168.5.10 gateway=192.168.5.10
/ip dns
set allow-remote-requests=yes servers=192.168.2.1
/ip firewall filter
add action=drop chain=forward in-interface=Port1_LAN1 out-interface-list=\
list_drop_LAN1
add action=drop chain=forward in-interface=Port3_LAN2 out-interface-list=\
list_drop_LAN2
/ip firewall mangle
add action=mark-routing chain=prerouting in-interface=Port1_LAN1 \
new-routing-mark=LAN1 passthrough=no
add action=mark-routing chain=prerouting in-interface=Port3_LAN2 \
new-routing-mark=LAN2 passthrough=no
add action=mark-routing chain=prerouting in-interface=Port5_LAN3 \
new-routing-mark=LAN3 passthrough=no
/ip firewall nat
add action=masquerade chain=srcnat out-interface=Port2_WAN1
add action=masquerade chain=srcnat out-interface=Port4_WAN2
/ip route
add distance=1 gateway=192.168.2.1 routing-mark=LAN1
add distance=1 dst-address=192.168.5.0/24 gateway=Port5_LAN3 routing-mark=\
LAN1
add distance=1 gateway=192.168.4.1 routing-mark=LAN2
add distance=1 dst-address=192.168.5.0/24 gateway=Port5_LAN3 routing-mark=\
LAN2
add distance=1 gateway=192.168.2.1 routing-mark=LAN3
add distance=1 dst-address=192.168.5.0/24 gateway=Port5_LAN3 routing-mark=\
LAN3
/ip service
set api disabled=yes
/system ntp client
set enabled=yes primary-ntp=176.9.102.215 secondary-ntp=176.9.31.215
/system routerboard settings
set cpu-frequency=850MHz protected-routerboot=disabled
Physical Port1 is LAN1 for Family 1 (connected to various computers from Family 1)
Physical Port2 is WAN1 for Family 1 (connected to the router from Family 1 ISP)
Physical Port3 is LAN2 for Family 2 (connected to various computers from Family 2)
Physical Port4 is WAN2 for Family 2 (connected to the router from Family 2 ISP)
Physical Port5 is LAN3 for shared Network-Printer
If I disable the static route with Routing Mark "LAN3" and Dst. Address 0.0.0.0/0 then I can ping the network printer from LAN1 and LAN2 and reverse. I also can't ping between LAN1 and LAN2 as expected. And I even can traceroute a public URL and see the correct hops. But I have no internet access from LAN3!
Aside from that it seems not possible to access a network share in LAN3 with the name of the computer. I have to enter \\192.168.5.xxx to access the network share. This might be a problem because I would like to install the printer via it's node name and not via it's IP.
If I enable the static route with Routing Mark "LAN3" and Dst. Address 0.0.0.0/0 then I can't ping between the subnets any more, but I have internet access from LAN3.
Perhaps you can tell me how I can get everything to run?
Best regards...Pedro2016