Will this routing example work? Mikrotik routing.

[Kameelperdza]

Hi im planning a new routing layout for my wifi.

i would like to know from the experts will this example work?

here it is


Router1(KKT-HS)
rb1
eth1(link between rb1 & rb2) 172.23.128.1/32 ~ 172.23.128.2/32
grid1 (link beteen KKT-HS & Emile-HS) 172.23.128.3/32 ~ 172.23.128.4/32
grid2 (link between KKT-HS & Hannes) 172.23.128.5/32 ~ 172.23.128.6/32
omni 172.23.128.7/28 ~ 172.23.128.21/28

rb2
grid1(Link between grwug & odnwug)
sector1 172.23.128.29/28 ~ 172.23.128.43/28
sector2 172.23.128.44/28 ~ 172.23.128.58/28
eth1 (link between rb1 & rb2) 172.23.128.2/32 ~ 172.23.128.1/32

Router2 (Emile-HS)
grid1(link between Emile-HS & KKT-HS)
omni1 172.23.128.59/28 ~ 172.23.128.73/28
sector1 172.23.128.74/28 ~ 172.23.128.88/28

router3 (Hannes)
grid1(link between KKT-HS & Hannes) 172.23.128.6/32 ~ 172.23.128.5/32
omni1 172.23.128.89/28 ~ 172.23.128.103/28
grid2(link between Hannes & thys) 172.23.128.104/32 ~ 172.23.128.105/32


router4 (Thys)
grid1 (Link between Hannes & Thys) 172.23.128.105/32 ~ 172.23.128.104/32
omni1 172.23.128.105/28 ~ 172.23.128.119/28
sector1 172.23.128.120/28 ~ 172.23.128.134/28

router5 (cpe)(Bob)
cpe (connects to sector on thys) 172.23.128.121/32


PS: Will bob be able to connect becos he is using subnet /32 and the HS is using /28 ?????

Thanx in advanced

 

[Fr0sT]

U should realy ask portcullis, he is a pro in this routing stuff.

 

[portcullis]

I had a quick look at this earlier, scratched my head when I saw all the /32's and made a note to look at it again later.

Kameelperd, I'm still trying to figure out what you're trying to say.

 

[portcullis]

Get your hands on TCP/IP Clearly Explained, 4th Edition, by Peter Losham

Router1(KKT-HS)
rb1
eth1(link between rb1 & rb2) 172.23.128.1/30 ~ 172.23.128.2/30
grid1 (link beteen KKT-HS & Emile-HS) 172.23.128.5/30 ~ 172.23.128.6/30
grid2 (link between KKT-HS & Hannes) 172.23.128.9/30 ~ 172.23.128.10/30
omni 172.23.128.17/28 ~ 172.23.128.30/28

rb2
grid1(Link between grwug & odnwug)
sector1 172.23.128.33/28 ~ 172.23.128.46/28
sector2 172.23.128.49/28 ~ 172.23.128.62/28
eth1 (link between rb1 & rb2) 172.23.128.2/30 ~ 172.23.128.1/30

Router2 (Emile-HS)
grid1(link between Emile-HS & KKT-HS) 172.23.128.6/30 ~ 172.23.128.5/30
omni1 172.23.128.65/28 ~ 172.23.128.78/28
sector1 172.23.128.74/81 ~ 172.23.128.94/28

router3 (Hannes)
grid1(link between KKT-HS & Hannes) 172.23.128.10/30 ~ 172.23.128.9/30
omni1 172.23.128.97/28 ~ 172.23.128.110/28
grid2(link between Hannes & thys) 172.23.128.113/30 ~ 172.23.128.114/30


router4 (Thys)
grid1 (Link between Hannes & Thys) 172.23.128.114/30 ~ 172.23.128.113/30
omni1 172.23.128.129/28 ~ 172.23.128.142/28
sector1 172.23.128.145/28 ~ 172.23.128.158/28

router5 (cpe)(Bob)
cpe (connects to sector on thys) 172.23.128.141/28

 

[portcullis]

It's been a long day. Can somebody please check my math?

 

[portcullis]

This is probably more neat.

Router1(KKT-HS)
rb1
eth1(link between rb1 & rb2) 172.23.128.1/30 ~ 172.23.128.2/30
grid1 (link beteen KKT-HS & Emile-HS) 172.23.128.5/30 ~ 172.23.128.6/30
grid2 (link between KKT-HS & Hannes) 172.23.128.9/30 ~ 172.23.128.10/30
omni 172.23.128.17/28 ~ 172.23.128.30/28

rb2
grid1(Link between grwug & odnwug)
sector1 172.23.128.33/28 ~ 172.23.128.46/28
sector2 172.23.128.49/28 ~ 172.23.128.62/28
eth1 (link between rb1 & rb2) 172.23.128.2/30 ~ 172.23.128.1/30

Router2 (Emile-HS)
grid1(link between Emile-HS & KKT-HS) 172.23.128.6/30 ~ 172.23.128.5/30
omni1 172.23.128.65/28 ~ 172.23.128.78/28
sector1 172.23.128.74/81 ~ 172.23.128.94/28

router3 (Hannes)
grid1(link between KKT-HS & Hannes) 172.23.128.10/30 ~ 172.23.128.9/30
omni1 172.23.128.97/28 ~ 172.23.128.110/28
grid2(link between Hannes & thys) 172.23.128.13/30 ~ 172.23.128.14/30

router4 (Thys)
grid1 (Link between Hannes & Thys) 172.23.128.14/30 ~ 172.23.128.13/30
omni1 172.23.128.129/28 ~ 172.23.128.142/28
sector1 172.23.128.145/28 ~ 172.23.128.158/28

router5 (cpe)(Bob)
cpe (connects to sector on thys) 172.23.128.141/28

 

[Kameelperdza]

re

I have made more changes, i will allow 14 clients per antenna. Hopefully the ap can handle 30 clients.

Router1(KKT-HS)
rb1
eth1 (link between rb1 & rb2) 172.16.0.1 ~ 172.16.0.2
grid1 (link beteen KKT-HS & Emile-HS) 172.23.128.1/30 ~ 172.23.128.2/30
grid2 (link between KKT-HS & Hannes) 172.23.128.5/30 ~ 172.23.128.6/30
omni 172.23.128.9/28 ~ 172.23.128.22/28

rb2
grid1 (Link between grwug & odnwug) 172.23.128.25/30 ~ 172.23.128.26/30
sector1 172.23.128.29/28 ~ 172.23.128.42/28
sector2 172.23.128.45/28 ~ 172.23.128.58/28
eth1 (link between rb1 & rb2) 172.16.0.2 ~ 172.16.0.1

Router2 (Emile-HS)
grid1 (link between Emile-HS & KKT-HS) 172.23.128.2/30 ~ 172.23.128.1/30
sector1 172.23.128.61/28 ~ 172.23.128.74/28
omni1) 172.23.128.77/28 ~ 172.23.128.90/28

router3 (Hannes)
grid1 (link between KKT-HS & Hannes) 172.23.128.6/30 ~ 172.23.128.5/30
omni1 172.23.128.93/28 ~ 172.23.128.106/28
grid2 (link between Hannes & thys) 172.23.128.109/30 ~ 172.23.128.110/30

router4 (Thys)
grid1 (Link between Hannes & Thys)
sector1 172.23.128.113/28 ~ 172.23.128.126/28
omni1 172.23.128.129/28 ~ 172.23.128.142/28

router5 (cpe)(Bob)
cpe (connects to sector on thys) 172.23.128.114/28

 

[pietervickers123]

Quick question, i know its a very newbie question, but im really not that advanced in routing/mikrotik.

Ive purchased a RB433 with 1 x R5H mini-pci', 1 x 31dbi grid.(we want a excellent signal) Running Level 4 license

We need to create a link from the office to the outbuilding, which is aprox 200M. I've configured the RB433 with :

1. 1 x SSID running on 5825 freq
2. WPA-PSK for security (not really a need for it, nobody near..) (Famous last words, lol)
3. A bridge called 'bridge1' - and added the different interfaces (wlan1+ether1) to the bridge
4. An IP for the bridge - 192.168.0.2 (My DSL router is 192.168.0.1)

For the Client Station - Using a RB411 and a 19DBi integrated panel -

1. Configured the CPE as 'station', configured wpa + created a bridge, added the ether1 + wlan to the bridge, created an ip '192.168.0.2'

BUT , for crying in a (rather large) bucket, i cannot ping the client ip from the base, and vica versa. I can see that the radio's are connected under "Registered" stations, and i can winbox to the client using the MAC, but i just cannot ping it on its ip! @#$@%
I thought it were routing issue, and read up on the net everywhere, even tried to work throught the whole TCP-IP talks on the net, to no avail. I have really tried everything, and its going to be something simple again, (like it always is)

Can anybody shed some light?

 

[portcullis]

Quick question, i know its a very newbie question, but im really not that advanced in routing/mikrotik.

Ive purchased a RB433 with 1 x R5H mini-pci's, 1 x 31dbi grid. Running Level 4 license

We need to create a link from the office to the outbuilding, which is aprox 200M. I've configured the RB433 with :

1. 1 x SSID running on 5825 freq
2. WPA-PSK for security (not really a need for it, nobody near..) (Famous last words, lol)
3. A bridge called 'bridge1' - and added the different interfaces (wlan1+ether1) to the bridge
4. An IP for the bridge - 192.168.0.2 (My DSL router is 192.168.0.1)

For the Client Station - Using a RB411 and a 19DBi integrated panel -

1. Configured the CPE as 'station', configured wpa + created a bridge, added the ether1 + wlan to the bridge, created an ip '192.168.0.2'

BUT , for crying in a (rather large) bucket, i cannot ping the client ip from the base, and vica versa. I cannot see that the radio's are connected under "Registered" stations, and i can winbox to the client, but i just cannot ping it!
I thought it were routing issue, and read up on the net everywhere, even tried to work throught the whole TCP-IP talks on the net, to no avail. I have really tried everything, and its going to be something simple again, (like it always is)

Can anybody shed some light?

Do you have a licence to operate on 5825?

Are you really using a 31dBi antenna to go 200m down the road?

 

[pietervickers123]

Well , my pops said we need to get the best equipment, so yes! lol , and no we dont have license, if you are talking about a VANS license. Dont need it in any case, really dont think ICASA is going to catch us on the farm!

 

[pietervickers123]

I m in the IT industry, thats why i suggested the wifi setup. Used to deal the guys at Etime in George, www.etime.co.za , thats how i got my wireless knowledge...

 

[pietervickers123]

Actually im quite ticked off about it, i really should have gone for normal, standard cpe's. The mikrotik is a bit overkill and the learning curve is too steep, i havent got the time to research this fully for future use. But we paid quite almost 3 grand for the stuff!

 

[portcullis]

Take this lot back and get 2 x UBNT Nanostation 5's.

 

[pietervickers123]

No way, ive installed that monster already, mounted, fitted, the works. That ant + radio will rot from that roof...lol, doesnt matter, ill find a way to make it work

 

[Kameelperdza]

re

I m in the IT industry, thats why i suggested the wifi setup. Used to deal the guys at Etime in George, www.etime.co.za , thats how i got my wireless knowledge...

The company that i work for also had etime, we constantly had network timeouts dut to one of their dns server. So we canceled the contract and upgraded our IS connection.

To pietervickers123,
1. remove bridge from the routers
2. Then putty to the router and add this address paste this

ip address add address=192.168.0.2/24 interface=ether1

3. Then paste this also in same router

ip address add address=192.168.1.1/24 interface=wlan1

4. ip route add dst-address=0.0.0.0/0 gateway=192.168.0.1


then on router 2
1.

ip address add address=192.168.1.2/24 interface=wlan1

2.

ip address add address=192.168.2.1/24 interface=wlan1

3.

ip route add dst-address=0.0.0.0/0 gateway=192.168.1.1

I think that should work. Ip address on remote computer will be 192.168.2.0/24, gateway will be 192.168.2.1 and dns settings same as router

 

[pietervickers123]

Nope...

Thx for the advice, tried it, but nada. Still cant ping or browse. Then i added the (wlan+ether1) on the CPE to a bridge , then i could ping 192.168.2.1, the wlan1 interface ip on the Rb433.... but no internet or any other ip's for that matter. Maybe im a bit thick, but must the IP on the CPE for the ether1 interface not be 192.168.2.2?

 

[Kameelperdza]

Sorry i typed incorrectly.

Please reset routers to default setting and paste these.

router1

ip address add address=192.168.0.2/24 interface=ether1
ip address add address=192.168.1.1/24 interface=wlan1
ip route add dst-address=192.168.2.0/24 gateway=192.168.1.2

router2

ip address add address=192.168.1.2/24 interface=wlan1
ip address add address=192.168.2.1/24 interface=ehter1
ip route add dst-address=0.0.0.0/0 gateway=192.168.1.1

You should then be able to ping 192.168.0.2 and 192.168.0.1 from 192.168.2.1 and vise versa
If this does not work then add this to router 1

ip firewall nat add chain=srcnat action=masquerade

Please give feedback