Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
S
S
Skywalker732018-10-16 19:15:16
VPN
Skywalker73, 2018-10-16 19:15:16

How to make 2 isolated networks on one mikrotik?

Two companies wanted to save money and decided that one router would be enough for them for two (neighbors).
What should happen in the end:
1. Two independent local grids that do not intersect in any way and use one channel to access the Internet
a) for each network one separate Ethernet port is allocated on a microtic to which just a hub is connected
b) each network has its own wifi access point and gets into its network through it
2. A simple guest WIFI network WITHOUT access to the two local networks described above , pure Internet access
3. Another guest WIFI network WITHOUT access to the three networks already described above and having a
simple client VPN as an Internet channel connection based on L2TP (the server is a remote Mikrotik)
Please tell me how to implement all this on RouterOS.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
T
TyzhSysAdmin, 2018-10-16
@POS_troi

We make two different bridges, shove the necessary ports there, assign addresses and configure two dhtsp for these bridges, route filters or a firewall prohibit routing between subnets.
Also with guest points.
P.3. in nat rules, just specify the vpn interface as the gateway for the subnet of this point

Report
V
Viktor Belsky, 2018-10-16
@Belyj

1. Create virtual wifi interfaces for two local networks and two for guest networks.
2. Combine the necessary lan and wifi interfaces into a bridge
3. Assign each bridge to which "hubs" are connected ip address from network 1 and 2, respectively (addressing, of course, should not overlap), configure dhcp servers for these interfaces.
4. Set up a separate dhcp for guest wifi (again, networks should be different)
5. Set up nat and firewall rules that prohibit packets from passing between networks.
6. Set up labeling for packets from the 2nd guest network and, based on these labels, make a separate default route where the vpn interface will be the gateway, and draw nat for it.

Similar questions
I
impressive172019-12-04 00:39:50
What is the difference between the structure of projects in Obj C and Swift languages? 6Reply
A
Anton2015-07-14 17:39:43
Connecting to fpt server via vpn? 3Reply
K
Korvine Phoenix2017-06-27 15:10:53
How to study networks to live well? 5Reply
A
Andrey Makarenko2021-05-20 17:12:42
VPN error, size too small? 0Reply
A
Alexey Kitsiyev2015-07-25 11:46:07
How to set up a DD-WRT VPN server within the provider's local network so that clients use their own Internet connection from the provider? 3Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question