Community discussions

MikroTik App
 
leonset
Member Candidate
Member Candidate
Topic Author
Posts: 256
Joined: Wed Apr 01, 2009 9:09 pm

Firewall matcher for a given gateway

Mon Aug 24, 2015 12:58 pm

Hello,

In the firewall of a main router, I would like to be able of match packets for the IP's which are conected to a given gateway/router. Routes are distributed to the main router by OSPF from diferent routers which act as PPPoE servers and IPs are assigned by Radius server from a common ip pool.

Is there any packet matcher in ip firewall which may help me identifying the traffic to/from each PPPoE server?

Is there any other approach which may be useful to identify that traffic?

Thank you!
 
User avatar
mrz
MikroTik Support
MikroTik Support
Posts: 7185
Joined: Wed Feb 07, 2007 12:45 pm
Location: Latvia
Contact:

Re: Firewall matcher for a given gateway

Mon Aug 24, 2015 7:00 pm

PPPoE is layer2 so only bridge filter rules can be used.
 
leonset
Member Candidate
Member Candidate
Topic Author
Posts: 256
Joined: Wed Apr 01, 2009 9:09 pm

Re: Firewall matcher for a given gateway

Tue Aug 25, 2015 2:57 pm

C1 (pppoe client1)
|------ R1 (pppoe server1)
C2 (pppoe client2) |
|--- [OSPF routes] ----- R3 (main router) ------- Internet
C3 (pppoe client3) |
|------ R2 (pppoe server2)
C4 (pppoe client4)



This is the simplified network, where each component is:

- C1 to C4: PPPoE client which get a real IP from Radius when they connect to R1 or R2.
- R1 and R2: PPPoE servers for C1 to C4. Once PPPoE sessions is stablished, route is published via OSPF to other routers on the same area, including R3.
- R3: main gateway to internet.

I would like to be able of matching packets at R3 in order to diferentiate which clients are connected to R1 and which to R2, that is, the ospf-published gateway each route to each client has. I hope my explanation it's clearer now.

Who is online

Users browsing this forum: haianh and 18 guests