Did you add the proper routes? Something like 44.0.0.0/8 via tunnel-if or whatever connectivity you expect to have? Just remember, you can not connect to other subnets in the 44 subnet via tunnel, except the ones with public routing via BGP.
And you may add 2 forward rules, from your internal interface to the tunnel and back (I think the default forward action is 'drop'). Or just try a forward 'accept' for everything for the beginning (don't leave it that way).
Marius, YO2LOJ
-----Original Message----- From: R P Sent: Saturday, April 09, 2016 12:08 To: AMPRNet working group Subject: [44net] Tunnel to UCSD refuse to work on my mikrotik
(Please trim inclusions from previous messages) _______________________________________________ Hi group
the tunnel traffic from mikrotik refuse to work
I have done the followings
Gave the wan (called ether1-gateway) ip of the outside (in my case 10.0.0.180 (it connect to the ISP router DMZ zone))
Gave the Lan the gateway 44 IP in my case (44.138.1.l)
unchecked the NAT option
created tunnel interface (called UCSD) with IPIP and source address of 10.0.0.180 and destination address of the amprgw at UCSD
changed the ip route 0.0.0.0 to point to the UCSD interface (to tunnel outgoing traffic of my 44 net to the tunnel )
same config exist and working at the Cisco here ( i have disconnected it and plugged the Mikrotik instead) .
I see that the tunnel interface receive data and send data but i have no connectivity
when i look at the firewall connection tab i see the incoming DNS attacks to what used to be the mikrotik address when it was connected to the 44 net few days ago so it looks like that incoming traffic work ok from the ucsd tunnel side
I disabled all firewalls rules (the one that came with the router out of the box) and no change
When i do trace route from the router it stop at the 10.0.0.180 IP and not go afterward
What am i doing wrong ?
the same setup work at the CIsco
If it matterthe OS version is 6.29.1
and system firmware 3.24
Any help would be more then appreciated
Is there any command that i can grab the configuration of the router (like in Cisco the command "Show running config" ) ?
regards
Ronen - 4Z4ZQ
Ronen Pinchooks (4Z4ZQ) WebSitehttp://www.ronen.org/ www.ronen.org ronen.org (Ronen Pinchooks (4Z4ZQ) WebSite) is hosted by domainavenue.com