MikroTik

Hi,

Is it possible to put my RB912 with modem huawei MU709s, in enabler mode for a Cisco router?
How can i do that?

The idea is that the RB receive de public IP address and pass it to the Cisco transparently!

I have a configuration of another equipament (teldat 4G enabler) that do this. Can i replicate this in RB

interface FastEthernet0/0.1
encapsulation dot1Q 1 native
ip address <IP Cisco router> 255.255.255.252
no cdp enable
!
interface FastEthernet0/0.463
! INTERFACE THAT RECEIVE PUBLIC IP ADDRESS
encapsulation dot1Q 463
ip address dhcp
# ip nat outside#
ip virtual-reassembly
no cdp enable
!
ip route 0.0.0.0 0.0.0.0 FastEthernet0/0.463 dhcp

Thanks in advanced,

if you can bridge the modem interface with an Ethernet interface, that would probably be the best solution.

if you can bridge the modem interface with an Ethernet interface, that would probably be the best solution.

Thanks ZeroByte, and then in Ethernet interface i can configure the two VLAN´s. I will try

If you use a VLAN, then the bridge should have two ports: LTE interface and the VLAN interface (not the raw Ethernet interface)

most of lte,3g modems doesn't support bridge mode, it is not possible to bridge lte with Ethernet .

most of lte,3g modems doesn't support bridge mode, it is not possible to bridge lte with Ethernet .

I thought this might be the case.

You're probably going to have to settle for double NAT.

You might be able to do some voodoo with proxy arp and scripts but I don't like that sort of thing... Too much trouble to live with a weird config.

Hello,

I´m new in the forum, and after seeing this topic i was very interested, beacause i´m triyng to do something like that.
I have the following scenario: One RB411 (old one ) with a modem sierra wireless MC7710 (LTE), where i get the public ip address, but I want to pass the public ip transparently to the cisco 1941 through Eth. Then the idea is the cisco router do everything i want.

My thought was to do some bridging on interface LTE and ETH, but it seems is not possible, now i'm stuck. How can i do this in a easy way??

Thanks for response.

I think your best bet is to configure the Cisco with a static private IP, and then on the Mikrotik, dstnat everything to the Cisco's private IP.

chain=dstnat action=dst-nat to-address=192.168.255.2
(no protocol, no port, etc)

chain=srcnat out-interface=lte-interface action=masquerade

You could still use the firewall of the Mikrotik if you want to filter things, or if you want to let the Cisco control its own destiny, just make one rule in the forward chain:
chain=forward action=fasttrack-connection
(to speed up what can be sped up - everything else will get default accept)

Interestingly, you won't even really need input chain firewall rules to protect the Mikrotik from scans and so forth because everything will be redirected to the Cisco.

It's not 100% what you want, but it's a much easier solution to work with and it should "just work" much better than bending heaven and earth with proxy-arp and other tools, especially if the LTE address is dynamic....

I think your best bet is to configure the Cisco with a static private IP, and then on the Mikrotik, dstnat everything to the Cisco's private IP.

chain=dstnat action=dst-nat to-address=192.168.255.2
(no protocol, no port, etc)

chain=srcnat out-interface=lte-interface action=masquerade

You could still use the firewall of the Mikrotik if you want to filter things, or if you want to let the Cisco control its own destiny, just make one rule in the forward chain:
chain=forward action=fasttrack-connection
(to speed up what can be sped up - everything else will get default accept)

Interestingly, you won't even really need input chain firewall rules to protect the Mikrotik from scans and so forth because everything will be redirected to the Cisco.

It's not 100% what you want, but it's a much easier solution to work with and it should "just work" much better than bending heaven and earth with proxy-arp and other tools, especially if the LTE address is dynamic....

Many Thanks ZeroByte.
It´s a good idea to try.

I let you Know if it works fine

Hello,

I´m new in the forum, and after seeing this topic i was very interested, beacause i´m triyng to do something like that.
I have the following scenario:
Cenário Enabler.png
One RB411 (old one ) with a modem sierra wireless MC7710 (LTE), where i get the public ip address, but I want to pass the public ip transparently to the cisco 1941 through Eth. Then the idea is the cisco router do everything i want.

My thought was to do some bridging on interface LTE and ETH, but it seems is not possible, now i'm stuck. How can i do this in a easy way??

Thanks for response.

I also get stuck at this point! But there must be a better solution that creating a NAT to put this through...
I am using a Huawei ME909s-120. Maybe somebody has a solution ---> http://forum.mikrotik.com/viewtopic.php?f=2&t=113562