Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 5 years ago.
Improve this question
I have such configuration for my network.
WAN:
ether1 10.20.30.5/24
LAN:
ether5 192.168.1.254/24 and 192.168.10.254/24(DHCP)
I have Created Some queue for those ips.
I have to Access File/Folders from a Local Windows Server(192.168.1.2). When i access file/folders from the block 192.168.1.0/24 everything ok. But when i access file/folders from the block 192.168.10.0/24, it Showing on Queue and get very slow access.
I want to access File/Folders like 192.168.1.0/24 block if i use ip block 192.168.10.0/24.
Extremely Sorry for my poor English.
Give the Mikrotik an IP in the 192.168.1.0/24 subnet such as .254.
/ip address add address=192.168.1.254/24 interface=ether5
Tell servers in the 192.168.1.2 ip range to use 192.168.1.254 as the default gateway. Check that these servers can ping the clients in the 192.168.10.0 range. All file server traffic between the subnets will be routed by the Mikrotik. I believe this arrangement will work however I have been unable to test the routing for myself.
I recommend moving the 192.168.1.0 and 192.168.10.0 subnets to different ethernet ports if isolation is required. If it is not required then you are much better off using a single subnet to encompass all the devices. You could expand the subnet mask to 192.168.0.0/20 which will include 192.168.0.0-192.168.15.255 for example.
I've gotten a simple solution.
I just Mark Packet all of my Local Subnets. Then Assign High Bandwidth(500M) on Queue List.
Now, All users can communicate will full speed. :)
You can try
ip firewall mangle add
chain=prerouting action=mark-packet new-packet-mark=Local passthrough=no
src-address=192.168.0.0/16 dst-address=192.168.0.0/16 log=no
log-prefix=""
queue simple add
name="Local" target=192.168.0.0/16 parent=none packet-marks=Local
priority=8/8 queue=default-small/default-small limit-at=0/0
max-limit=500M/500M burst-limit=0/0 burst-threshold=0/0 burst-time=0s/0s
Related
Closed. This question is not about programming or software development. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 4 days ago.
Improve this question
I ve a local webserver. I use it for my guests to scan QR Codes and order/view menus etc. The server has local IP "10.0.0.250" , available to all guests and the domain name is "orderfood.gr" (Static dns set on Mikrotik orderfood.gr = IP 10.0.0.250). I am redirecting all port 53 traffic to the router in order to avoid guests with static DNS such as 8.8.8.8, 1.1.1.1 etc (and that works fine). However some mobiles cannot translate the IP of the domain. After struggling i've found that most times this happens is because of the Private DNS service (set ON by default on some mobiles). Is there a way i can prevent this from happening ?
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 5 years ago.
Improve this question
I have a dlink router..Dlink DIR 600M...I am trying to port forward 1337 and 1334 through my router and opened listener but after enable i checked canyouseeme.org but theres no port opened..i have a cable net connection...my wan ip and public ip is different.
If your WAN IP address and your Public IP addresses are different, you will need to be sure that you first port forward from the public-facing router to your D-Link router. If you do not have access to your public facing router (as is the case with my current network setup), then this port forwarding is not possible.
I have a DIR-651, and there are check boxes next to all the Port Forwarding rules. Make sure those are checked. I've wasted hours of troubleshooting because one of the boxes wasn't checked and saved.
Finally, make sure that you have a server running on the correct IP address and port that you specified on your router. Also, make sure that your firewall is disabled on those ports. If your server isn't configured to respond on those ports, then canyouseeme.org will not respond that those ports are open.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 5 years ago.
Improve this question
Using static routes is it possible to access a host with an IP address of 1.2.3.4 on port 4000 that is connect to rtrnode on a wlan network that has a public ip address of x.x.x.14 from a remote host (h1)?
h1 -------router-------INTERNET-------(public IP(x.x.14)) = rtrnode(1.2.3.3)---------destination(1.2.3.4)
NO: Unless:You tunnel. This way the foreign LAN is a hop from the LAN you are on according to the routers on both ends that handle the packetizing and perform the VPN. It is easiest to set this up using firewalls like : PFSense or the likes. This link explains, there are many more: http://www.makeuseof.com/tag/vpn-tunnel-set/. You cannot route across the Internet with static routes unless you have control over the routers that are routing. They run BGP and will direct your traffic to the valid IP you are incorrectly using in your private LAN.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 8 years ago.
Improve this question
Do I need to forward these ports? Is there a way to do it on Windows 7? I've tried using a program named smart port forwarding but it crashes when the program is running. Thanks in advance.
You shouldn't need to forward those ports in order to be able to run the applications. Chrome and Steam are connecting through those ports to the internet because they are ones that the operating system says are available for outgoing connections and provided them with that unique port number when each application asked for it.
These applications should all run fine for you, without needing to open any ports. Opening a port is most always to let incoming traffic be accepted, not for outgoing traffic to be stopped. A telltale sign that a port is not open is that no connection can be made. If you tried to connect over the internet (port 80) to most random IP addresses, you won't be able to find anything, because the device at that IP address rejected your attempt to open that port to them. So because you are (I am assuming) able to successfully run both Chrome and Steam and have them be able to connect to the internet, you shouldn't be facing a port forwarding issue. The port numbers are just assigned essentially at random each time that an application needs to open an outgoing socket. (this being a simplification of the whole paradigm, but hopefully enough to be able to answer this question).
Edit: And yes, like #Rumesh-Eranga pointed out as well, port forwarding is done at the router level (on the internet router itself) and not at the computer level. It's a way of saying to the router "alright, any time this network receives a request to open port XYZ, send it to this computer that is connected to our local network."
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 5 years ago.
Improve this question
I have followed these instructions:
http://aws.amazon.com/articles/0639686206802544
I can ping the VPN endpoints and I have the corresponding VPC CIDR pointing to the EC2 instance in the route table. Here is my config:
port 1194
proto udp
dev tun
# Remote peer and network
remote Elastic_IP
# Configure local and remote VPN endpoints
ifconfig 169.254.255.1 169.254.255.2
# The pre-shared static key
secret /etc/openvpn/ovpn.key
keepalive 10 120
persist-key
persist-tun
log /var/log/openvpn.log
verb 3
I can ping the OpenVPN instances and the corresponding endpoints however I still can't ping other private IP's in the other subnet.
I've added a persistent route to send the traffic through the gateway. Anything else I should look at?
Make sure you have the Source/dest checks turned off in the ENI for your VPN instance.