9 Apr
2016
9 Apr
'16
5:08 a.m.
Hi group
the tunnel traffic from mikrotik refuse to work
I have done the followings
Gave the wan (called ether1-gateway) ip of the outside (in my case 10.0.0.180 (it
connect to the ISP router DMZ zone))
Gave the Lan the gateway 44 IP in my case (44.138.1.l)
unchecked the NAT option
created tunnel interface (called UCSD) with IPIP and source address of 10.0.0.180 and
destination address of the amprgw at UCSD
changed the ip route 0.0.0.0 to point to the UCSD interface (to tunnel outgoing traffic
of my 44 net to the tunnel )
same config exist and working at the Cisco here ( i have disconnected it and plugged the
Mikrotik instead) .
I see that the tunnel interface receive data and send data but i have no connectivity
when i look at the firewall connection tab i see the incoming DNS attacks to what
used to be the mikrotik address when it was connected to the 44 net few days ago so it
looks like that incoming traffic work ok from the ucsd tunnel side
I disabled all firewalls rules (the one that came with the router out of the box) and no
change
When i do trace route from the router it stop at the 10.0.0.180 IP and not go afterward
What am i doing wrong ?
the same setup work at the CIsco
If it matterthe OS version is 6.29.1
and system firmware 3.24
Any help would be more then appreciated
Is there any command that i can grab the configuration of the router (like in Cisco the
command "Show running config" ) ?
regards
Ronen - 4Z4ZQ
http://www.ronen.org
Ronen Pinchooks (4Z4ZQ) WebSite<http://www.ronen.org/>
www.ronen.org
ronen.org (Ronen Pinchooks (4Z4ZQ) WebSite) is hosted by domainavenue.com
9 Apr
9 Apr
5:51 a.m.
Did you add the proper routes?
Something like 44.0.0.0/8 via tunnel-if or whatever connectivity you expect
to have?
Just remember, you can not connect to other subnets in the 44 subnet via
tunnel, except the ones with public routing via BGP.
And you may add 2 forward rules, from your internal interface to the tunnel
and back (I think the default forward action is 'drop').
Or just try a forward 'accept' for everything for the beginning (don't leave
it that way).
Marius, YO2LOJ
-----Original Message-----
From: R P
Sent: Saturday, April 09, 2016 12:08
To: AMPRNet working group
Subject: [44net] Tunnel to UCSD refuse to work on my mikrotik
(Please trim inclusions from previous messages)
_______________________________________________
Hi group
the tunnel traffic from mikrotik refuse to work
I have done the followings
Gave the wan (called ether1-gateway) ip of the outside (in my case
10.0.0.180 (it connect to the ISP router DMZ zone))
Gave the Lan the gateway 44 IP in my case (44.138.1.l)
unchecked the NAT option
created tunnel interface (called UCSD) with IPIP and source address of
10.0.0.180 and destination address of the amprgw at UCSD
changed the ip route 0.0.0.0 to point to the UCSD interface (to tunnel
outgoing traffic of my 44 net to the tunnel )
same config exist and working at the Cisco here ( i have disconnected it
and plugged the Mikrotik instead) .
I see that the tunnel interface receive data and send data but i have no
connectivity
when i look at the firewall connection tab i see the incoming DNS
attacks to what used to be the mikrotik address when it was connected to
the 44 net few days ago so it looks like that incoming traffic work ok from
the ucsd tunnel side
I disabled all firewalls rules (the one that came with the router out of
the box) and no change
When i do trace route from the router it stop at the 10.0.0.180 IP and not
go afterward
What am i doing wrong ?
the same setup work at the CIsco
If it matterthe OS version is 6.29.1
and system firmware 3.24
Any help would be more then appreciated
Is there any command that i can grab the configuration of the router (like
in Cisco the command "Show running config" ) ?
regards
Ronen - 4Z4ZQ
http://www.ronen.org
Ronen Pinchooks (4Z4ZQ) WebSite<http://www.ronen.org/>
www.ronen.org
ronen.org (Ronen Pinchooks (4Z4ZQ) WebSite) is hosted by domainavenue.com
3200
days inactive
3200
days old
1 comments
2 participants
participants (2)
-
Marius Petrescu -
R P