New to Mikrotik here, I'm able to access my lte1 interface (10.249.9.6 - it's via a private APN / IPsec site to site VPN) but I'm not able to access my bridge interface (192.168.160.0/24).
What am I doing wrong?
Here's my config:
# 2024-11-11 13:46:27 by RouterOS 7.16.1
# software id = QXXX-XXXQ
#
# model = D53G-xxxxxxxxx&FG621-EA
# serial number = HGC09Vxxxxx
/disk
set usb1 media-interface=none media-sharing=no
/interface bridge
add name=bridge1
/interface list
add name=WAN
add name=LAN
/interface lte apn
set [ find default=yes ] ip-type=ipv4 use-network-apn=no use-peer-dns=no
add apn=i-mycompanyvpn ip-type=ipv4 name=My_Company use-peer-dns=no
add apn=vpn-internet ip-type=ipv4 name=MyISP use-peer-dns=no
/interface lte
set [ find default-name=lte1 ] allow-roaming=no apn-profiles=My_Company_Band="" sms-protocol=auto sms-read=no
/ip pool
add name=dhcp ranges=192.168.160.101-192.168.160.150
/ppp profile
set *FFFFFFFE local-address=192.168.89.1 remote-address=vpn
/interface bridge port
add bridge=bridge1 interface=ether1
add bridge=bridge1 interface=ether2
add bridge=bridge1 interface=ether3
add bridge=bridge1 interface=ether4
add bridge=bridge1 interface=ether5
/interface l2tp-server server
set use-ipsec=yes
/interface list member
add interface=lte1 list=WAN
add interface=bridge1 list=LAN
/ip address
add address=192.168.160.1/24 interface=bridge1 network=192.168.160.0
/ip cloud
set ddns-enabled=yes ddns-update-interval=30m
/ip dhcp-server
add address-pool=dhcp interface=bridge1 name=dhcp1
/ip dhcp-server network
add address=192.168.160.0/24 dns-server=192.168.1.11,192.168.1.12 gateway=192.168.160.1 netmask=24
/ip dns
set allow-remote-requests=yes servers=192.168.1.11,192.168.1.12
/ip firewall filter
add action=accept chain=forward disabled=yes dst-address=192.168.160.1 src-address=10.249.9.6 src-address-list=""
/ip firewall nat
add action=masquerade chain=srcnat out-interface=bridge1 to-addresses=10.249.9.6
add action=dst-nat chain=dstnat comment="Port 80" disabled=yes dst-port=80 in-interface-list=WAN protocol=tcp to-addresses=192.168.160.150 to-ports=80
add action=dst-nat chain=dstnat disabled=yes dst-address-list=10.249.9.6 dst-port=0-65535 protocol=tcp to-addresses=192.168.160.1 to-ports=0-65535
/ip firewall service-port
set ftp disabled=yes
set tftp disabled=yes
set h323 disabled=yes
set sip disabled=yes
set pptp disabled=yes
/ip nat-pmp
set enabled=yes
/ip nat-pmp interfaces
add interface=ether1 type=internal
add interface=lte1 type=external
/ip service
set telnet disabled=yes
set ftp disabled=yes
set ssh disabled=yes
set www-ssl disabled=no
set api disabled=yes
set api-ssl disabled=yes
/ip upnp interfaces
add interface=bridge1 type=internal
add interface=lte1 type=external
/ppp secret
add name=vpn
/system clock
set time-zone-name=Europe/Athens
/system note
set show-at-login=no
/tool sniffer
set filter-dst-ip-address=192.168.160.1/32 filter-interface=all filter-src-ip-address=192.168.1.50/32
Thank you in advance!