Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
K
K
karibskii_koks2017-06-23 09:36:49
Mikrotik
karibskii_koks, 2017-06-23 09:36:49

Why doesn't Mikrotik ping the local network from a white address?

Hello, Mikrotik from a white address does not ping addresses on the local network
Addressing on the router:
# ADDRESS NETWORK INTERFACE
0 172.21.139.2/16 172.21.0.0 ether1
1 192.168.0.254/24 192.168.0.0 LAN-bridge
2 10.72.74.66/27 10.72. 74.64 ether2
3 D 89.250.146.160/32 10.92.127.254 domru-ppppoe Note
that domru-pppoe is on ether1
Other rules for Src-NAT:
add action=masquerade chain=srcnat out-interface=domru-ppppoe
add action=masquerade chain =srcnat out-interface=ether1
Routes^
0 AS 0.0.0.0/0 domru-ppppoe 1
1 AS 172.16.0.0/16 172.21.139.1 1
2 AS 172.21.0.0/16 172.21.139.2 ether1 1
3 XS 192.168.0.0/16 LAN-bridge 1
5 AS 0.0.0.0/0 domru-ppppoe 1
7 ADC 10.72.74.64/27 10.72.74.66 ether2 0
8 ADC 10.92. 127.254 / 32 89.250.146.160 DOMRU-PPPPOE 0
9 AS 172.16.5.244/32 172.21.139.1 1
10 AS 172.16.5.245/32 172.21.139.1 1
11 ADC 172.21.0.0/16 172.21.139.2 Ether1 0.0F
12 ADC 192.168.0.0/ 24 192.168.0.254 LAN-bridge 0
13 AS 192.168.1.0/24 192.168.0.186 1
Attempts to ping any address on the local network fail.

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

2 answer(s)
Report
P
poisons, 2017-06-23
@poisons

I understand correctly that you want to do something like this
ping 192.168.0.x src-address=89.250.146.160, where 192.168.0.x is some host in your locale?
12 ADC 192.168.0.0/24 192.168.0.254 LAN-bridge 0 - that's enough. Your subnet is available directly from the interface. The only thing that can interfere is the rules in the output chain in the ip firewall filter.
Or the task is not fully stated.

Report
V
Vladimir Zhurkin, 2017-06-28
@icCE

>add action=masquerade chain=srcnat out-interface=domru-ppppoe
>add action=masquerade chain=srcnat out-interface=ether1
You decide which interface you use to masquerade , you don't get to rule 2 - ether1 at all.
ether2 - what do you have?
192.168.1.0/24 192.168.0.186 - another mesh? On a router from that party 186 reverse routing is registered?
My advice, start with a minimally simple configuration.
Bring up the network 192.168.0.x , bring up only pppoe internet And do a normal, stable job.
Then add everything else.

Similar questions
A
alexnem2020-09-26 09:46:45
Big time using a new laptop? 5Reply
K
Konstantin2018-04-18 22:04:33
Connection to Pritunl Mikrotik. How to disable tls-auth? 1Reply
P
Pavel2015-12-09 23:58:46
How to configure VPN L2TP on Mikrotik via L2TP Beeline? 1Reply
K
kitaisc2012-10-21 09:17:37
Combining several Internet channels on Mikrotik into one 2Reply
S
SuppOn2018-04-27 14:56:22
Unification of a network for Mikrotik and several VPN networks for Kerio Control? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question