Chuck, I can make any changes you need via teamviewer? On Sat, Jul 6, 2019 at 8:01 AM <ch...@wbmfg.com> wrote:
> Thanks, we will get back on this. Unless you want to visit scenic Lake > Point, Utah today... > > *From:* Sterling Jacobson > *Sent:* Friday, July 5, 2019 5:27 PM > *To:* AnimalFarm Microwave Users Group > *Subject:* Re: [AFMUG] Gonna need some help please. > > > DHCP client is under IP->DHCP Client then just disable or remove it > altogether. > > > > You want to make sure you have a bridge under Bridge, and the Port tab of > the bridge you can add/remove ethernet ports to the bridge. > > Leave the WAN ethernet port you are using OUT of any bridge so it routes > by default. > > > > You would add an IP address 76.76.252.68/24 to your WAN Ethernet > interface by going to IP->addresses and adding that entry assigned to that > interface. > > You already have the gateway and DNS, so it should now route and you can > do stuff from the routerboard online so to speak. > > > > Make sure you have a strong password. > > > > Also I would go in to IP->Services and disable all but Winbox and then add > an internal IP range that you are handing out via DHCP as the only access > range ie. 192.168.x.x/24 or whatever you are handing out. > > > > You an upgrade to latest by going to System->packages and Check for > Updates, get latest from current and download and update from the button. > > It will reboot and then you go to System->Routerboard and hit Update for > updating the firmware, after a second or two it will say done and that you > should reboot, so do that and you should be current. > > > > > > > > > > *From:* AF <af-boun...@af.afmug.com> *On Behalf Of *ch...@wbmfg.com > *Sent:* Friday, July 5, 2019 12:49 PM > *To:* AnimalFarm Microwave Users Group <af@af.afmug.com> > *Subject:* Re: [AFMUG] Gonna need some help please. > > > > > > > > *From:* ch...@wbmfg.com > > *Sent:* Friday, July 5, 2019 12:48 PM > > *To:* AnimalFarm Microwave Users Group > > *Subject:* Re: [AFMUG] Gonna need some help please. > > > > Oh....After re-reading it looks like you're avoiding NAT by putting > servers into a public /29. I completely misread what you were looking for. > > > > So yeah, by default the RB2011 will have the first Ethernet port set up as > the WAN with DHCP, and everything exiting via that port gets > masqueraded....so you'll want to change that masquerade rule so it only > matches the private IP's. > > > > Add the static IP to ether1. ✔ > > Add the static default route by adding a route to destination 0.0.0.0/0 > with gateway of 76.76.252.1.✔ > > Add static DNS servers under IP->DNS✔ > > Remove the DHCP-client on ether1. Not sure how to do this > > Add the /29 to interface bridge-local ✔ Maybe > > Under IP->Firewall->NAT, edit the masquerade rule by removing the "out > interface" criteria. Add a new criteria for source IP 192.168.88.0/24. ✔ > I think. > > > > Now your DHCP clients get private IP's and NAT, but your servers with > static IP's don't. I think that's the bare minimum, and it ought to be > dead simple in Winbox. > > > > Where do we put in the new IPs or IP range associated with this block they > gave me? > > > > > > 76.76.254.48/29 routed to 76.76.252.68 > WAN IP: 76.76.252.68 > Subnet: 255.255.255.0 > Gateway: 76.76.252.1 > > Routed subnet info: > 76.76.254.48/29 > subnet mask: 255.255.255.248 > available IP's: 76.76.254.49-54 > > ------------------------------ > -- > AF mailing list > AF@af.afmug.com > http://af.afmug.com/mailman/listinfo/af_af.afmug.com > > -- > AF mailing list > AF@af.afmug.com > http://af.afmug.com/mailman/listinfo/af_af.afmug.com >
-- AF mailing list AF@af.afmug.com http://af.afmug.com/mailman/listinfo/af_af.afmug.com
