Is your loopback IP a public? ROS loves to use the first available
(enumerated) IP for anything, so maybe this NAT rule is getting hung up
on that particular IP address and not from the /29?
I guess I would go back to basics a bit and use a standard src-nat rule
specifying my WAN IP and eliminate the out-interface. From there, start
changing it until you either get it the way you want or you find out
what's breaking it.
Rory McCann
MKAP Technology Solutions
Web: www.mkap.net
On 10/27/2014 4:12 PM, Roy, Jerry wrote:
Yes, It is WAN
[[email protected]] > ip address print
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK INTERFACE
0 ;;; LAN
192.168.88.1/24 192.168.88.0 bridge2
1 ;;; IPsec Tunnel Interface
5.1.0.3/32 5.1.0.3 loopback1
2 D 108.245.41.98/29 108.245.41.96 bridge1
[[email protected]] >
Jerry Roy 949.681.5054
-----Original Message-----
From: [email protected]
[mailto:[email protected]] On Behalf Of Josh Luthman
Sent: Monday, October 27, 2014 2:08 PM
To: Mikrotik discussions
Subject: Re: [Mikrotik] Bridge and Nat? Help!
Is bridge1 the "wan interface"? It has no IP address.
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Mon, Oct 27, 2014 at 5:04 PM, Roy, Jerry <[email protected]>
wrote:
Still does not work, anyone? Ideas why?
Thanks
-----Original Message-----
From: Roy, Jerry
Sent: Monday, October 27, 2014 7:56 AM
To: Mikrotik discussions
Subject: RE: [Mikrotik] Bridge and Nat? Help!
Thanks for the input :)
I see you sent the Lab but not the solution ;)
Are you saying from this:
add action=masquerade chain=srcnat disabled=no out-interface=bridge1
src-address=192.168.88.0/24
to this:
add action=masquerade chain=srcnat disabled=no dst-address=0.0.0.0/0
out-interface=bridge1 src-address=\
192.168.88.0/24
Because if so it still does not work :)
_______________________________________________
Mikrotik mailing list
[email protected]
http://mail.butchevans.com/mailman/listinfo/mikrotik
Visit http://blog.butchevans.com/ for tutorials related to Mikrotik
RouterOS
-------------- next part --------------
An HTML attachment was scrubbed...
URL:
<http://mail.butchevans.com/pipermail/mikrotik/attachments/20141027/bd98692c/attachment.html>
_______________________________________________
Mikrotik mailing list
[email protected]
http://mail.butchevans.com/mailman/listinfo/mikrotik
Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS
_______________________________________________
Mikrotik mailing list
[email protected]
http://mail.butchevans.com/mailman/listinfo/mikrotik
Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS
_______________________________________________
Mikrotik mailing list
[email protected]
http://mail.butchevans.com/mailman/listinfo/mikrotik
Visit http://blog.butchevans.com/ for tutorials related to Mikrotik RouterOS
