I have two APs connected together via cable, mt2 has Lan: 192.168.10.5/27 and Wlan: 192.168.10.48/28 -- mt1 has 192.168.10.1/27 (mt1 is dhcp server for LAN) . Mt1 is connected to my VDSL modem which is 192.168.11.254.
The problem is that I cannot ping or see wireless devices from lan devices e.g. if I wish to connect from 192.168.10.10 to 192.168.10.50 it is not possible (all devices can access the Internet). Also If I wish to port forward e.g. port 22 for 192.168.10.50 so I can access it outside the network how can I do that?
Thank you all
Re: cannot ping and access Wlan devices
Bridge your wired and wireless sections. Give that bridge a single IP address.
Why do you have subnets of /28 and /27 in the same range? This will bring strange connectivity issues sooner or later.
Port forwarding is pretty straight forward:
-Chris
Why do you have subnets of /28 and /27 in the same range? This will bring strange connectivity issues sooner or later.
Port forwarding is pretty straight forward:
Code: Select all
/ip firewall nat
add chain=dstnat action=dst-nat protocol=tcp port=22 in-interface=<wan> to-address=192.168.10.50
Re: cannot ping and access Wlan devices
Thank you Chris, much appreciated!
Re: cannot ping and access Wlan devices
Dear Chris,
I must be going wrong somewhere...I have bridged port1 and port 2 on MT1. Bridge has address 192.168.1.1/24 (ADSL modem is connected physically on port 1 with 192.168.1.254/24), port 2 is my LAN. Port 3 of MT1 is connected on port1 of MT2 = 192.168.0.5 (that basically acts like a switch, all Ethernet 2,3,4,5 have as master master port 1), on that second MT I have a device on port 2 = 192.168.0.27 that I wish to have local port 100 forwarded from public port 200.
I have forwarded port 200 to 200 on my modem and the idea was to /ip firewall nat add action=dst-nat chain=dstnat disabled=no dst-port=200 in-interface=bridge1 protocol=tcp to-addresses=192.168.0.27 to-ports=100 . It shows with online tools that the port is open (port is forwarded on adsl modem to the mac address of port1 of the 1st MT) but I cannot remotely connect to the device no matter what I try!
P.S. I do not have nat enabled on any of the 2 MTs.
P.S. I would assume that just by forwarding on the adsl modem straight port 100 that would be enough since everything is on the same network, but if i type 192.168.0.27 to forward the port appears to be closed!
What a mess...any help please?
I must be going wrong somewhere...I have bridged port1 and port 2 on MT1. Bridge has address 192.168.1.1/24 (ADSL modem is connected physically on port 1 with 192.168.1.254/24), port 2 is my LAN. Port 3 of MT1 is connected on port1 of MT2 = 192.168.0.5 (that basically acts like a switch, all Ethernet 2,3,4,5 have as master master port 1), on that second MT I have a device on port 2 = 192.168.0.27 that I wish to have local port 100 forwarded from public port 200.
I have forwarded port 200 to 200 on my modem and the idea was to /ip firewall nat add action=dst-nat chain=dstnat disabled=no dst-port=200 in-interface=bridge1 protocol=tcp to-addresses=192.168.0.27 to-ports=100 . It shows with online tools that the port is open (port is forwarded on adsl modem to the mac address of port1 of the 1st MT) but I cannot remotely connect to the device no matter what I try!
P.S. I do not have nat enabled on any of the 2 MTs.
P.S. I would assume that just by forwarding on the adsl modem straight port 100 that would be enough since everything is on the same network, but if i type 192.168.0.27 to forward the port appears to be closed!
What a mess...any help please?