Answer the question
In order to leave comments, you need to log in
N
N
nikolaevalexandr922018-12-16 18:17:43
nikolaevalexandr92, 2018-12-16 18:17:43
How to create a subnet on a separate Mikrotik port?
Good day to all.
There is a task to build a separate cable subnet on one of the Mikrotik ports (RouterBOARD 962UiGS-5HacT2HnT).
In order to connect an unmanaged switch to this port in the future.
The new subnet must be isolated from the main one and have Internet access only.
From what I did: I
created a separate bridge, added the 4th port there, configured DHCP.
Clients receive the necessary addresses, but do NOT have access to the Internet.
Prompt how to make that hosts got access to the Internet.
Attached is a screenshot of the config. 
Thanks in advance.
2 answer(s)
@nikolaevalexandr92
@Maestrosoft
N
nikolaevalexandr92, 2018-12-17 @nikolaevalexandr92
Found a solution, or rather helped.
The IP address must be assigned to the interface, remove this interface from all bridges. This will be our gateway.
Create a separate DHCP server to bind a pool to it from the network in which we have a gateway. You also need to create a network where you need to add a default gateway and DNS.
Next, you need to create a rule or upgrade NAT so that your clients fall under it.
Then create a firewall rule so that clients of this network cannot access other networks.
If you have a default firewall, then there is a rule that drops packets coming from the interface NOT in the "LAN" list.
Add "bridge_guest" interface to "LAN" list under "Interfces"-"Interface List"
O
Oleg Popov, 2018-12-17 @Maestrosoft
Turn on masquerading for this network and yes_there will be Internet! :)
Similar questions
B
T
N
L
A
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question