-
Join the MyBroadband community
South Africa’s biggest forum. Discuss, discover, and connect with thousands of members.
-
Question of the Day: What's the most interesting small town you've visited in South Africa?
Help with RB750G
- Thread starter greggpb
- Start date
Pada
Executive Member
1) Run WinBox and connect to the RB750G
2) Click PPP menu item.
3) Click the + icon and select PPPoE Client
4) Select the Interface which is connected to the Wimax modem and enter the rest of the user/password details.
I'm just not sure how the Telkom WiMax router works, so it could be that this won't work due to the WiMax router not being in bridge mode.
The instructions that I gave is how I'm dialing PPPoE connections via my ADSL router from my RB750
2) Click PPP menu item.
3) Click the + icon and select PPPoE Client
4) Select the Interface which is connected to the Wimax modem and enter the rest of the user/password details.
I'm just not sure how the Telkom WiMax router works, so it could be that this won't work due to the WiMax router not being in bridge mode.
The instructions that I gave is how I'm dialing PPPoE connections via my ADSL router from my RB750
You dont have to change anything on the wimax unit (in fact there is nothing you can change). The above instructions should work. I have my RB450 running on my wimax line no problems.
Only thing you might need to change is to lower the MTU on the pppoe connection (try 1390 then go down).
Only thing you might need to change is to lower the MTU on the pppoe connection (try 1390 then go down).
Thanks for the replies guy I think i will give some more info...
Alvarion Breezemax3000 Wimax Unit (Static Ip 192.168.254.251)
RB750G with standard settings
on wan port configured to static ip 192.168.254.4
DHcp sever running on port 2-5 router ip = 192.168.88.1
I have setup a pppoe connection Which allows me to ping the internet from the router.. when i ping from a box on port(2-5) the initial ping is very slow then all thereafter are fast)
It seem like a Dns issure..
When i use the Breese max without the router I set it as the dns server(192.168.254.251) and do a straight windows pppoe connection this works..
so when I use the router the Dns servers are 192.168.88.1,192.168.254.251
I have 2 nat firewall rules setup for masquerading
add chain=srcnat action=masquerade src-address=10.100.4.0/24 out-interface=pppoe-out1
add chain=srcnat action=masquerade src-address=10.100.4.0/24 out-interface=ether-gateway
What have you guys setup as you dns servers ?
Alvarion Breezemax3000 Wimax Unit (Static Ip 192.168.254.251)
RB750G with standard settings
on wan port configured to static ip 192.168.254.4
DHcp sever running on port 2-5 router ip = 192.168.88.1
I have setup a pppoe connection Which allows me to ping the internet from the router.. when i ping from a box on port(2-5) the initial ping is very slow then all thereafter are fast)
It seem like a Dns issure..
When i use the Breese max without the router I set it as the dns server(192.168.254.251) and do a straight windows pppoe connection this works..
so when I use the router the Dns servers are 192.168.88.1,192.168.254.251
I have 2 nat firewall rules setup for masquerading
add chain=srcnat action=masquerade src-address=10.100.4.0/24 out-interface=pppoe-out1
add chain=srcnat action=masquerade src-address=10.100.4.0/24 out-interface=ether-gateway
What have you guys setup as you dns servers ?
Your config seems to be a bit confused.
Firstly the WAN port should not have a static IP address (you gave it 192.168.254.4). The WAN port should get a public IP address from your ISP, dynamically assigned by the PPPoE connection.
The Alvarion Unit is not a router so is theoretically invisible to your network.
You should aslo set your PPPoE connection to get the dns addresses dynamically from the ISP.
On your internal network you have the routers internal IP as 192.168.88.1 and then your masqurade firewall rules for the 10.100.4.0/24 subnet. They should all be on the same subnet.
Try to keep it simple.
Set the Lan port on the router to something like 192.168.1.1/24, then setup DHCP to assign addresses 192.168.1.10-192.168.1.254 to clients, with gateway of 192.168.1.1.
Then you can get DHCP to assign the peer DNS - this will assign the dns provided by the isp.
Alternately you can use the routers lan ip (192.168.1.1) as the dns for clients.
Then create your masqurade firewall rules for the 192.168.1.0/24 subnet.
Firstly the WAN port should not have a static IP address (you gave it 192.168.254.4). The WAN port should get a public IP address from your ISP, dynamically assigned by the PPPoE connection.
The Alvarion Unit is not a router so is theoretically invisible to your network.
You should aslo set your PPPoE connection to get the dns addresses dynamically from the ISP.
On your internal network you have the routers internal IP as 192.168.88.1 and then your masqurade firewall rules for the 10.100.4.0/24 subnet. They should all be on the same subnet.
Try to keep it simple.
Set the Lan port on the router to something like 192.168.1.1/24, then setup DHCP to assign addresses 192.168.1.10-192.168.1.254 to clients, with gateway of 192.168.1.1.
Then you can get DHCP to assign the peer DNS - this will assign the dns provided by the isp.
Alternately you can use the routers lan ip (192.168.1.1) as the dns for clients.
Then create your masqurade firewall rules for the 192.168.1.0/24 subnet.
You right about the confusion... lol
I tried to replicate the PPPOE connection i had when i connected a pc directly to the Alvarion.
which was :
Alvarion in default setup (with an internal Ip of 192.168.254.251 )
Mypc : Static IP (192.168.251.4/255.255.255.0), Manual DNS Server (192.168.254.251)
This configuration worked for on computer.
Sorry I pasted these from the wrong place and my
I would like to thank you for the help, I think I understand enoguh to sort this out.. I hope...
Cool I will try and get it all sorted..
I tried to replicate the PPPOE connection i had when i connected a pc directly to the Alvarion.
which was :
Alvarion in default setup (with an internal Ip of 192.168.254.251 )
Mypc : Static IP (192.168.251.4/255.255.255.0), Manual DNS Server (192.168.254.251)
This configuration worked for on computer.
Code:
add chain=srcnat action=masquerade src-address=xxxxx/24 out-interface=pppoe-out1
add chain=srcnat action=masquerade src-address=xxxxxxx/24 out-interface=ether-gatewayI would like to thank you for the help, I think I understand enoguh to sort this out.. I hope...
Cool I will try and get it all sorted..
Ok so I have been playing about and I am not clear on a couple of things ?
The Alvarion is staticly assigned 192.168.254.251 with no option to change that.
When you run a PPPoe connection do the router/computer and PPPoe device have to have IPs on the same subnet or do they communicate via MAC ?
When I plug a computer into the PPPOe device I have to staticly assign that compouter a IP..
I reset the unit to defualt settings and added a pppoe connection and it just get to the waiting for packet part of opening a connection
The PPPoe Device is staticly assigned 192.168.254.251 with no option to change that and no DHCP server.
so I should connec this device to the RB750g on ether1-gateway. I should then setup ether1-gateway to have a static IP possibly 192.168.254.250?
Then create a PPPoe interface that used the ether1-gateway(default Route=yes;DoD = yes)
I should then setup the DHCP server on the other ports to sent out address in the rage on the router (192.168.88.10 - 192.168.88.255) or should i use the range 192.168.254.10 - 192.168.254.249) ?
Then the dns server should it be the router or the pppoe Device ? or the isp's dns ?
Thanks
Gregg
The Alvarion is staticly assigned 192.168.254.251 with no option to change that.
When you run a PPPoe connection do the router/computer and PPPoe device have to have IPs on the same subnet or do they communicate via MAC ?
When I plug a computer into the PPPOe device I have to staticly assign that compouter a IP..
I reset the unit to defualt settings and added a pppoe connection and it just get to the waiting for packet part of opening a connection
The PPPoe Device is staticly assigned 192.168.254.251 with no option to change that and no DHCP server.
so I should connec this device to the RB750g on ether1-gateway. I should then setup ether1-gateway to have a static IP possibly 192.168.254.250?
Then create a PPPoe interface that used the ether1-gateway(default Route=yes;DoD = yes)
I should then setup the DHCP server on the other ports to sent out address in the rage on the router (192.168.88.10 - 192.168.88.255) or should i use the range 192.168.254.10 - 192.168.254.249) ?
Then the dns server should it be the router or the pppoe Device ? or the isp's dns ?
Thanks
Gregg
Last edited:
As i said previously - forgot about the Wimax device. It is theoretically invisible to your network - you dont have to worry about the 192.168.254.x at all.
Connect the Wimax IDU to the Router ether1. Create a PPPoe Client connection and set it to use ether1 - set username, password, Dod, Add Default route, use peer dns.
Setup ether2 with the ip 192.168.88.1/24. Create a masqurade firewall rule for your internal network (192.168.88.0/24). Setup DHCP to assign 192.168.88.10-255, with gateway 192.168.88.1 and DNS as either peer DNS, 192.168.88.1 or some other external DNS like opendns or 4.4.4.4.
If you want to use the other ports you might need to bridge them. Sorry, dont have a RB with me at the moment to confirm the above.
Connect the Wimax IDU to the Router ether1. Create a PPPoe Client connection and set it to use ether1 - set username, password, Dod, Add Default route, use peer dns.
Setup ether2 with the ip 192.168.88.1/24. Create a masqurade firewall rule for your internal network (192.168.88.0/24). Setup DHCP to assign 192.168.88.10-255, with gateway 192.168.88.1 and DNS as either peer DNS, 192.168.88.1 or some other external DNS like opendns or 4.4.4.4.
If you want to use the other ports you might need to bridge them. Sorry, dont have a RB with me at the moment to confirm the above.
Roman4604
Executive Member
Or an even simpler option is just to put everything onto the same physical ethernet segment. ROS is perfectly capable of running IP routing (for the internal LAN) and a pppoe-client on the same interface (e.g. ether1). And if one uses the same IP range as the IDU, you retain access to its mgmt interface (e.g. to checks signal strength etc.).
greggpb try the following ...
1. Set internal LAN IP/range;
/ip address add address=192.168.254.1/24 broadcast=192.168.254.255 comment="LAN" disabled=no interface=ether1 network=192.168.254.0
2. Setup DHCP (.100-.200) for internal hosts
/ip pool add name=dhcp_pool1 ranges=192.168.254.100-192.168.254.200
/ip dhcp-server add address-pool=dhcp_pool1 authoritative=after-2sec-delay bootp-support=static disabled=no interface=ether1 lease-time=3d name=dhcp1
/ip dhcp-server network add address=192.168.254.0/24 comment="" dns-server=192.168.254.1 gateway=192.168.254.1
3. Ensure router's DNS does relaying/caching
/ip dns set allow-remote-requests=yes cache-max-ttl=1w cache-size=2048KiB max-udp-packet-size=512
4. Create PPPoE interface
/interface pppoe-client add ac-name="" add-default-route=yes allow=pap,chap comment="" dial-on-demand=no disabled=no interface=ether1\
max-mru=1492 max-mtu=1492 mrru=disabled name=WIMAX password=PPPPP profile=default service-name="" use-peer-dns=yes user=UUUUUU
5. Configure outbound NAT for the LAN IP range
/ip firewall nat add action=masquerade chain=srcnat comment="" disabled=no out-interface=WIMAX
Then connect the IDU to any of the RB750G's ports, and that should be it.
I would like to thank you guys.. I have been very frustrated with this for a week now trying thing and through my own misunderstanding and making it difficult
Roman4604, ramar and Padda Thanks.. I have got it working and now understand more about the process
Roman4604, ramar and Padda Thanks.. I have got it working and now understand more about the process
Pada
Executive Member
Try to avoid OpenVPN with MikroTik routers. Rather use PPTP VPN.
Don't get me wrong: OpenVPN with TCP works with the MikroTik routers, but it's far from perfect.
Don't get me wrong: OpenVPN with TCP works with the MikroTik routers, but it's far from perfect.
Roman4604
Executive Member
The DHCP server resides on the logical router interface, so one must make sure all the switch ports are mapped to that interface. For example if the interface used is 'ether1' ...
/interface ethernet set 0 master-port=none name=ether1
/interface ethernet set 1 master-port=ether1 name=ether2
/interface ethernet set 2 master-port=ether1 name=ether3
/interface ethernet set 3 master-port=ether1 name=ether4
/interface ethernet set 4 master-port=ether1 name=ether5
Pada
Executive Member
Just remember that if you use a master-slave setup like Roman suggested, that you cannot do interface specific routing/firewalling any more.
It caused quite a lot of issues for me when I tried to run VLAN's on different ports, before I knew that there was a master-slave thing going
What you could do, is to COPY the DHCP Server configuration in WinBox and just select a different interface for each one. That way you keep using the same DHCP Address Pool.
Of course if you have 2 or more ports that should use the exact same routing/firewall configuration, then I would suggest that you use a master-slave setup like Roman suggested.
This is typically when you use the MikroTik RB750G in a setup where you have 1x WAN and 4x PC's connected to it that should have the same kind of access - where you could've placed them all on a switch.
It caused quite a lot of issues for me when I tried to run VLAN's on different ports, before I knew that there was a master-slave thing going
What you could do, is to COPY the DHCP Server configuration in WinBox and just select a different interface for each one. That way you keep using the same DHCP Address Pool.
Of course if you have 2 or more ports that should use the exact same routing/firewall configuration, then I would suggest that you use a master-slave setup like Roman suggested.
This is typically when you use the MikroTik RB750G in a setup where you have 1x WAN and 4x PC's connected to it that should have the same kind of access - where you could've placed them all on a switch.
Roman4604
Executive Member
Yeah true, but the advantage of associating the ports at a switch level is GbE type inter-port switching performance. Pushing any traffic through the router process significantly reduces this performance.
With the PC hardware I have (hardly cutting edge) I am able to achieve 440Mb/s throughput inter-port on the 750G (using uni-directional udp speedtests).