Community discussions

MikroTik App
  4. RouterOS
  5. General

Cant connect to github.com from LAN

Post Reply
 
dasnolojy
just joined
Topic Author
Posts: 4
Joined: Thu Nov 05, 2009 3:27 pm

Cant connect to github.com from LAN

Mon Jul 03, 2017 9:13 pm

Please help to solve problem with github connection.

Windows pc on ether2, ping github.com, getting answers from mikrotik "destination host unreacheble"

Try to ping on mikrotik:
Code: Select all
[admin@MikroTik] /tool> /ping count=5 google.com                     
  SEQ HOST                                     SIZE TTL TIME  STATUS                                                             
    0 64.233.161.113                             56  49 30ms 
    1 64.233.161.113                             56  49 30ms 
    2 64.233.161.113                             56  49 30ms 
    3 64.233.161.113                             56  49 30ms 
    4 64.233.161.113                             56  49 30ms 
    sent=5 received=5 packet-loss=0% min-rtt=30ms avg-rtt=30ms max-rtt=30ms 

[admin@MikroTik] /tool> /ping count=5 github.com                     
  SEQ HOST                                     SIZE TTL TIME  STATUS                                                             
    0 192.30.253.112                                          timeout                                                            
    1 192.30.253.112                                          timeout                                                            
    2 192.168.88.1                               84  64 990ms host unreachable                                                   
    3 192.30.253.112                                          timeout                                                            
    4 192.30.253.112                                          timeout                                                            
    sent=5 received=0 packet-loss=100% 

[admin@MikroTik] /tool> /ping count=5 interface=pppoe-out1 github.com
  SEQ HOST                                     SIZE TTL TIME  STATUS                                                             
    0 192.30.253.113                             56  52 142ms
    1 192.30.253.113                             56  52 142ms
    2 192.30.253.113                             56  52 142ms
    3 192.30.253.113                             56  52 142ms
    4 192.30.253.113                             56  52 142ms
    sent=5 received=5 packet-loss=0% min-rtt=142ms avg-rtt=142ms max-rtt=142ms
Firewall only default rules. Nat masquerade and dst-nat torrent port.
Top
 
idlemind
Forum Guru
Forum Guru
Posts: 1146
Joined: Fri Mar 24, 2017 11:15 pm
Location: USA

Re: Cant connect to github.com from LAN

Mon Jul 03, 2017 11:07 pm

Code: Select all
/ip route export hide-sensitive
/ip firewall export hide-sensitive
Alternatively, paste the whole configuration from:
Code: Select all
/export hide-sensitive
Top
 
dasnolojy
just joined
Topic Author
Posts: 4
Joined: Thu Nov 05, 2009 3:27 pm

Re: Cant connect to github.com from LAN

Thu Jul 06, 2017 4:56 pm

Alternatively, paste the whole configuration from:
Code: Select all
/export hide-sensitive
Code: Select all
[admin@MikroTik] > /export hide-sensitive
# jul/06/2017 17:53:06 by RouterOS 6.39.1
# software id = R37B-JN1Q
#
/interface bridge
add admin-mac=4C:5E:0C:5F:31:81 auto-mac=no fast-forward=no name=bridge-local
/interface ethernet
set [ find default-name=ether1 ] name=ether1-gateway
set [ find default-name=ether2 ] name=ether2-master-local
set [ find default-name=ether3 ] name=ether3-slave-local
set [ find default-name=ether4 ] name=ether4-slave-local
set [ find default-name=ether5 ] name=ether5-slave-local
/interface pppoe-client
add add-default-route=yes disabled=no interface=ether1-gateway keepalive-timeout=60 name=pppoe-out1 use-peer-dns=yes user=\
    v1616874
/interface wireless
set [ find default-name=wlan1 ] adaptive-noise-immunity=ap-and-client-mode band=2ghz-b/g/n country=russia disabled=no distance=\
    indoors hw-protection-mode=rts-cts mode=ap-bridge ssid=dasnolojy tx-power=8 tx-power-mode=all-rates-fixed \
    wireless-protocol=802.11 wmm-support=enabled
/ip neighbor discovery
set ether1-gateway discover=no
/interface wireless security-profiles
set [ find default=yes ] authentication-types=wpa2-psk eap-methods="" mode=dynamic-keys
/ip pool
add name=dhcp ranges=192.168.88.10-192.168.88.254
/ip dhcp-server
add address-pool=dhcp authoritative=after-2sec-delay disabled=no interface=bridge-local name=default
/interface bridge port
add bridge=bridge-local interface=ether2-master-local
add bridge=bridge-local interface=wlan1
/interface l2tp-server server
set caller-id-type=ip-address
/ip address
add address=192.168.88.1/8 interface=ether2-master-local network=192.0.0.0
/ip dhcp-client
add comment="default configuration" dhcp-options=hostname,clientid interface=ether1-gateway
/ip dhcp-server lease
add address=192.168.88.250 client-id=1:0:80:48:2d:df:3f mac-address=00:80:48:2D:DF:3F server=default
/ip dhcp-server network
add address=192.0.0.0/8 gateway=192.168.88.1 netmask=8
add address=192.168.88.0/24 comment="default configuration" gateway=192.168.88.1
/ip dns
set allow-remote-requests=yes
/ip dns static
add address=192.168.88.1 name=router
/ip firewall filter
add action=accept chain=input comment="default configuration" protocol=icmp
add action=accept chain=input comment="default configuration" connection-state=established,related
add action=drop chain=input comment="default configuration" in-interface=ether1-gateway
add action=fasttrack-connection chain=forward comment="default configuration" connection-state=established,related
add action=accept chain=forward comment="default configuration" connection-state=established,related
add action=drop chain=forward comment="default configuration" connection-state=invalid
add action=drop chain=forward comment="default configuration" connection-nat-state=!dstnat connection-state=new in-interface=\
    ether1-gateway
/ip firewall nat
add action=masquerade chain=srcnat comment="default configuration" out-interface=pppoe-out1
add action=netmap chain=dstnat comment=uTorrent dst-port=22699 in-interface=pppoe-out1 protocol=tcp to-addresses=192.168.88.250 \
    to-ports=22699
/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
set ssh disabled=yes
/system clock
set time-zone-name=Europe/Samara
/tool mac-server
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add
add interface=bridge-local
/tool mac-server mac-winbox
set [ find default=yes ] disabled=yes
add interface=ether2-master-local
add interface=ether3-slave-local
add interface=ether4-slave-local
add interface=ether5-slave-local
add
add interface=bridge-local
/tool sniffer
set filter-ip-protocol=icmp
Top
 
effndc
newbie
Posts: 44
Joined: Wed Jan 11, 2017 1:25 am

Re: Cant connect to github.com from LAN

Fri Jul 07, 2017 1:53 am

You are using invalid IP addresses on your network, you cannot use 192.0.0.0/8 and expect to reach the Internet with consistency. Github happens to use 192.30.x.x for some of their servers, perhaps other IPs in different regions.
Code: Select all
$ host github.com
github.com has address 192.30.255.112
github.com has address 192.30.255.113
In your configuration the router owns those IP addresses, if you login to your router and do a "ip route check 192.30.255.112" it will likely report it as being directly connected, as that is what your configuration says. Subnet masks matter, you need to change your settings to use valid IP subnets for private networks to avoid conflict.
Top
 
dasnolojy
just joined
Topic Author
Posts: 4
Joined: Thu Nov 05, 2009 3:27 pm

Re: Cant connect to github.com from LAN

Sat Jul 08, 2017 2:41 pm

Thank you very much
Top
Post Reply

Who is online

Users browsing this forum: No registered users and 48 guests
  4. RouterOS
  5. General