Hello,
i have the following network Topology:
I do not have access to the Router on Site1 & Site2.
"MikroTik-Router" and the "Mikrotik-Firewall" are configurable.
On the "Mikrotik-Firewall" all Interfaces are in a Bridge and Use-IP-Firewall in the Bridge-Settings is turned on.
I want the following:
Access Linux1 & Linux2 from the Windows Pc
Linux1 & Linux2 are not able to connect to each other.
This is simple, on "MikroTik-Firewall" are the following Rules:
0 chain=forward action accept connection-state=established,related
1 chain=forward action=accept src-address= 192.168.1.2
2 chain=forward action drop
Additionally i want to be sure that the request are coming from my "Mikrotik-Router".
So that somebody who unplug the "Mikrotik-Router" and give hisself the IP= 192.168.1.2 still cannot connect to Linux1 & Linux2.
How can i achieve this?
I have tried a IPsec-Tunnel between "MikroTik-Router" and "MikroTik-Firewall" but it seems like because the Linux Pc´s Gateway are not the "MikroTik-Firewall" the response will not be sended over the IPsec tunnel and so the connection can not be established.
Thanks.
i have the following network Topology:
I do not have access to the Router on Site1 & Site2.
"MikroTik-Router" and the "Mikrotik-Firewall" are configurable.
On the "Mikrotik-Firewall" all Interfaces are in a Bridge and Use-IP-Firewall in the Bridge-Settings is turned on.
I want the following:
Access Linux1 & Linux2 from the Windows Pc
Linux1 & Linux2 are not able to connect to each other.
This is simple, on "MikroTik-Firewall" are the following Rules:
0 chain=forward action accept connection-state=established,related
1 chain=forward action=accept src-address= 192.168.1.2
2 chain=forward action drop
Additionally i want to be sure that the request are coming from my "Mikrotik-Router".
So that somebody who unplug the "Mikrotik-Router" and give hisself the IP= 192.168.1.2 still cannot connect to Linux1 & Linux2.
How can i achieve this?
I have tried a IPsec-Tunnel between "MikroTik-Router" and "MikroTik-Firewall" but it seems like because the Linux Pc´s Gateway are not the "MikroTik-Firewall" the response will not be sended over the IPsec tunnel and so the connection can not be established.
Thanks.
Statistics: Posted by reclaim — Sat Mar 16, 2024 9:53 pm