F
F
fdroid2019-08-17 16:58:55
Computer networks
fdroid, 2019-08-17 16:58:55

How to use the second white IP?

The provider provides me with a white static IP, which I use to access my home network from the outside, etc. At some point, it was not that necessary, but it would be nice to use another white IP. I called the provider, the provider said "Okay" and gave me another IP, which I registered on ether1 (which serves as the WAN) of the microtic, in the same place where the first IP is registered. As a result, the second IP is pinged and, as it were, exists, but: 1) on the Internet, I am defined under the first IP 2) test port forwarding to the home virtual machine with the web server does not work. That is, for example, the first valid white IP is 1.2.3.4, the second is 1.2.3.5, the provider's gateway is 1.2.3.1, the internal IP of the virtual machine with a web server on port 80 is 10.10.10.10. Forwarding on Mikrotik is done, I go "from the outside" on the first IP - there is a nginx stub, I go to the second IP - nothing. The question is what needs to be done to make it work? Does the provider have to tweak something or do you need to adjust something on Mikrotik? I simply do not have an understanding of the logical connection of the structure that should be obtained.

Answer the question

In order to leave comments, you need to log in

6 answer(s)
S
sash999, 2019-08-17
@sash999

Customize your routing the way you want. And this is a bit unclear...

there was not something that would be necessary, but it would be nice to use another white IP
- what is the need and why do you need another white ip?

A
AkaZLOY, 2019-08-18
@AkaZLOY

Mark outgoing traffic in Mangle, and in NAT, use src-nat to specify which traffic to replace the source ip with one of the addresses available to you.

D
Drno, 2019-08-18
@Drno

Set up forwarding - condition - dst-address - write down the desired external IP there

L
lubezniy, 2019-08-17
@lubezniy

Apparently, your router should independently process requests from the LAN to the second IP, and not route them to the default gateway. You can check if this is the case using traceroute from the local network to the second IP address. And then look at the routes.

A
Alexander Karabanov, 2019-08-17
@karabanov

Everything is configured on your side. Check dst-nat rules for external access to internal resources. And change the src-nat rule so that traffic to the Internet goes through a different IP.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question