Hello, I am trying to configure a tunnel with public ips from my VPS (CHR) to my local network (RouterOS)
I followed this guide: viewtopic.php?t=160742 and everything is working less one thing, I can´t ping the public ip from the local network, it works if I use a VPN, but if using any local ip address to the public IP it times out, I tried creating fw rules and reviewing the ip routes, but I am unable to make it work.
Here are my configurations, if anyone could help I would be grateful.
On Router OS Config - home office enviroment
On CHR Router
I followed this guide: viewtopic.php?t=160742 and everything is working less one thing, I can´t ping the public ip from the local network, it works if I use a VPN, but if using any local ip address to the public IP it times out, I tried creating fw rules and reviewing the ip routes, but I am unable to make it work.
Here are my configurations, if anyone could help I would be grateful.
On Router OS Config - home office enviroment
Code:
/interface ethernetset [ find default-name=ether2 ] disable-running-check=no name=Freeboxset [ find default-name=ether1 ] disable-running-check=no name=LAN/interface ipipadd allow-fast-path=no local-address=x.x.3.60 name=GAN-VPS remote-address=x.x.166.197/interface listadd name=WAN/ip pooladd name=dhcp ranges=192.168.7.0-192.168.7.254add name=DHCP_LOCAL ranges=10.0.6.1-10.0.7.254/ip dhcp-serveradd address-pool=DHCP_LOCAL interface=LAN lease-time=2h name=dhcp1/routing tableadd disabled=no fib name=to-chr/ipv6 settingsset accept-router-advertisements=yes/interface list memberadd interface=Freebox list=WAN/ip addressadd address=192.168.88.1/24 comment="default configuration" interface=Freebox network=192.168.88.0add address=172.30.4.1/30 interface=GAN-VPS network=172.30.4.0add address=10.0.0.1/21 interface=LAN network=10.0.0.0add address=172.30.5.1 interface=LAN network=x.x.121.67add address=172.30.5.1 interface=LAN network=x.x.121.68add address=172.30.5.1 interface=LAN network=x.x.121.69add address=172.30.5.1 interface=LAN network=x.x.121.70add address=172.30.5.1 interface=LAN network=x.x.121.71add address=172.30.5.1 interface=LAN network=x.x.121.72add address=172.30.5.1 interface=LAN network=x.x.121.73add address=172.30.5.1 interface=LAN network=x.x.121.74add address=172.30.5.1 interface=LAN network=x.x.121.75add address=172.30.5.1 interface=LAN network=x.x.121.77add address=172.30.5.1 interface=LAN network=x.x.121.78add address=172.30.5.1 interface=LAN network=x.x.121.82add address=172.30.5.1 interface=LAN network=x.x.121.83add address=172.30.5.1 interface=LAN network=x.x.121.84add address=172.30.5.1 interface=LAN network=x.x.121.85add address=172.30.5.1 interface=LAN network=x.x.121.86add address=172.30.5.1 interface=LAN network=x.x.121.87add address=172.30.5.1 interface=LAN network=x.x.121.88add address=172.30.5.1 interface=LAN network=x.x.121.89add address=172.30.5.1 interface=LAN network=x.x.121.90add address=172.30.5.1 interface=LAN network=x.x.121.91add address=172.30.5.1 interface=LAN network=x.x.121.93add address=172.30.5.1 interface=LAN network=x.x.121.94add address=172.30.5.1 interface=LAN network=x.x.121.114add address=172.30.5.1 interface=LAN network=x.x.121.115add address=172.30.5.1 interface=LAN network=x.x.121.116add address=172.30.5.1 interface=LAN network=x.x.121.117add address=172.30.5.1 interface=LAN network=x.x.121.118add address=172.30.5.1 interface=LAN network=x.x.121.119add address=172.30.5.1 interface=LAN network=x.x.121.120add address=172.30.5.1 interface=LAN network=x.x.121.121add address=172.30.5.1 interface=LAN network=x.x.121.122add address=172.30.5.1 interface=LAN network=x.x.121.123add address=172.30.5.1 interface=LAN network=x.x.121.124add address=172.30.5.1 interface=LAN network=x.x.121.125add address=172.30.5.1 interface=LAN network=x.x.121.126add address=172.30.5.1 interface=LAN network=x.x.189.146add address=172.30.5.1 interface=LAN network=x.x.189.147add address=172.30.5.1 interface=LAN network=x.x.189.148add address=172.30.5.1 interface=LAN network=x.x.189.149add address=172.30.5.1 interface=LAN network=x.x.189.150add address=172.30.5.1 interface=LAN network=x.x.189.151add address=172.30.5.1 interface=LAN network=x.x.189.152add address=172.30.5.1 interface=LAN network=x.x.189.153add address=172.30.5.1 interface=LAN network=x.x.189.154add address=172.30.5.1 interface=LAN network=x.x.189.155add address=172.30.5.1 interface=LAN network=x.x.189.156add address=172.30.5.1 interface=LAN network=x.x.189.157add address=172.30.5.1 interface=LAN network=x.x.189.158add address=172.30.5.1 interface=LAN network=x.x.189.162add address=172.30.5.1 interface=LAN network=x.x.189.163add address=172.30.5.1 interface=LAN network=x.x.189.164add address=172.30.5.1 interface=LAN network=x.x.189.165add address=172.30.5.1 interface=LAN network=x.x.189.166add address=172.30.5.1 interface=LAN network=x.x.189.167add address=172.30.5.1 interface=LAN network=x.x.189.168add address=172.30.5.1 interface=LAN network=x.x.189.169add address=172.30.5.1 interface=LAN network=x.x.189.170add address=172.30.5.1 interface=LAN network=x.x.189.171add address=172.30.5.1 interface=LAN network=x.x.189.172add address=172.30.5.1 interface=LAN network=x.x.189.173add address=172.30.5.1 interface=LAN network=x.x.189.174add address=172.30.5.1 interface=LAN network=x.x.77.237add address=172.30.5.1 interface=LAN network=x.x.77.238add address=172.30.5.1 interface=LAN network=x.x.121.157add address=172.30.5.1 interface=LAN network=x.x.121.158add address=172.30.5.1 interface=LAN network=x.x.121.66add address=172.30.5.1 interface=LAN network=x.x.121.92/ip arpadd address=x.x.189.167 interface=LAN mac-address=BC:24:11:17:40:BE/ip dhcp-clientadd interface=Freebox/ip dhcp-server configset store-leases-disk=2h/ip dhcp-server networkadd address=10.0.0.0/21 dns-server=8.8.8.8,1.1.1.1 gateway=10.0.0.1/ip dnsset servers=10.0.0.1,8.8.8.8,8.8.4.4,2001:4860:4860::8888,2001:4860:4860::8844/ip firewall mangleadd action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.67 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.67add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.68 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.68add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.69 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.69add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.70 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.70add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.71 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.71add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.72 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.72add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.73 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.73add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.74 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.74add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.75 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.75add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.77 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.77add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.78 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.78add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.82 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.82add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.83 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.83add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.84 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.84add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.85 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.85add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.86 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.86add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.87 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.87add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.88 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.88add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.89 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.89add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.90 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.90add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.91 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.91add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.92 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.92add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.93 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.93add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.94 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.94add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.114 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.114add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.115 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.115add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.116 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.116add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.117 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.117add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.118 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.118add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.119 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.119add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.120 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.120add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.121 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.121add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.122 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.122add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.123 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.123add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.124 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.124add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.125 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.125add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.126 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.126add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.146 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.146add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.147 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.147add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.148 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.148add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.149 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.149add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.150 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.150add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.151 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.151add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.152 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.152add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.153 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.153add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.154 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.154add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.155 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.155add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.156 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.156add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.157 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.157add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.158 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.158add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.162 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.162add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.163 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.163add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.164 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.164add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.165 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.165add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.166 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.166add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.167 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.167add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.168 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.168add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.169 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.169add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.170 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.170add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.171 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.171add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.172 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.172add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.173 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.173add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.189.174 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.189.174add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.77.237 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.77.237add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.77.238 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.77.238add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.157 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.157add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.158 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.158add action=mark-connection chain=prerouting connection-mark=no-mark dst-address=x.x.121.66 in-interface=GAN-VPS new-connection-mark=server-public passthrough=noadd action=mark-connection chain=prerouting connection-mark=no-mark new-connection-mark=server-public passthrough=yes src-address=x.x.121.66add action=mark-routing chain=prerouting connection-mark=server-public in-interface=LAN new-routing-mark=to-chr passthrough=no/ip firewall natadd action=masquerade chain=srcnat out-interface-list=WAN/ip routeadd disabled=no dst-address=172.30.4.2/32 gateway=172.30.4.1 routing-table=main suppress-hw-offload=noadd dst-address=0.0.0.0/0 gateway=GAN-VPS routing-table=to-chr/ipv6 routeadd disabled=no dst-address=x.x:f60b:7d90::/64 gateway=x.x0:8:a8::1 routing-table=mainadd disabled=no dst-address=x.x0:8:a8::/64 gateway="" routing-table=mainadd disabled=no dst-address=x.x:f60b:7d90::/64 gateway=x.x0:8:a8::1 routing-table=mainadd disabled=no dst-address=x.x0:8:a8::/64 gateway="" routing-table=main/ip serviceset telnet disabled=yesset ftp disabled=yesset ssh disabled=yesset www-ssl certificate=letsencrypt-autogen_2024-04-17T09:29:52Z disabled=noset api disabled=yesset api-ssl disabled=yes/ip upnpset enabled=yes/ip upnp interfacesadd interface=Freebox type=externaladd interface=LAN type=internal/ipv6 addressadd address=x.xa61:110::2 interface=Freeboxadd address=x.xa61:111::2 interface=LANadd address=x.xa61:112::2 interface=LANadd address=x.xa61:113::2 interface=LANadd address=x.xa61:114::2 interface=LANadd address=x.xa61:115::2 interface=LANadd address=x.xa61:116::2 interface=LANadd address=x.xa61:117::2 interface=LANadd address=x.x0:8:a8:4567:d107:0:2 interface=FreeboxOn CHR Router
Code:
/interface ethernetset [ find default-name=ether1 ] disable-running-check=no/interface ipipadd allow-fast-path=no local-address=xxx.xxx.xxx.197 name=GAN-VPS remote-address=\ 82.66.3.60/diskset slot1 slot=slot1set slot2 slot=slot2set slot3 slot=slot3set slot4 slot=slot4set slot5 slot=slot5set slot6 slot=slot6set slot7 slot=slot7set slot8 slot=slot8set slot9 slot=slot9set slot10 slot=slot10set slot11 slot=slot11set slot12 slot=slot12set slot13 slot=slot13set slot14 slot=slot14set slot15 slot=slot15set slot16 slot=slot16set slot17 slot=slot17set slot18 slot=slot18/interface wireless security-profilesset [ find default=yes ] supplicant-identity=MikroTik/ip smb usersset [ find default=yes ] disabled=yes/user groupadd name=prometheus policy="read,test,winbox,api,!local,!telnet,!ssh,!ftp,!reboot\ ,!write,!policy,!password,!web,!sniff,!sensitive,!romon,!rest-api"/interface bridge portadd bridge=*6 interface=*5add bridge=*6 interface=ether1/ip firewall connection trackingset udp-timeout=10s/ip addressadd address=45.xxx.xxx.197/24 interface=ether1 network=45.xxx.xxx.0add address=172.30.4.2/30 interface=GAN-VPS network=172.30.4.0/ip arpadd address=x.x.x..66 interface=ether1 published=yesadd address=x.x.x..67 interface=ether1 published=yesadd address=x.x.x..68 interface=ether1 published=yesadd address=x.x.x..69 interface=ether1 published=yesadd address=x.x.x..70 interface=ether1 published=yesadd address=x.x.x..71 interface=ether1 published=yesadd address=x.x.x..72 interface=ether1 published=yesadd address=x.x.x..73 interface=ether1 published=yesadd address=x.x.x..74 interface=ether1 published=yesadd address=x.x.x..75 interface=ether1 published=yesadd address=x.x.x..76 interface=ether1 published=yesadd address=x.x.x..77 interface=ether1 published=yesadd address=x.x.x..78 interface=ether1 published=yesadd address=x.x.x..157 interface=ether1 published=yesadd address=x.x.x..158 interface=ether1 published=yesadd address=x.x.x..82 interface=ether1 published=yesadd address=x.x.x..83 interface=ether1 published=yesadd address=x.x.x..84 interface=ether1 published=yesadd address=x.x.x..85 interface=ether1 published=yesadd address=x.x.x..86 interface=ether1 published=yesadd address=x.x.x..87 interface=ether1 published=yesadd address=x.x.x..88 interface=ether1 published=yesadd address=x.x.x..89 interface=ether1 published=yesadd address=x.x.x..90 interface=ether1 published=yesadd address=x.x.x..91 interface=ether1 published=yesadd address=x.x.x..92 interface=ether1 published=yesadd address=x.x.x..93 interface=ether1 published=yesadd address=x.x.x..94 interface=ether1 published=yesadd address=x.x.x..114 interface=ether1 published=yesadd address=x.x.x..115 interface=ether1 published=yesadd address=x.x.x..116 interface=ether1 published=yesadd address=x.x.x..117 interface=ether1 published=yesadd address=x.x.x..118 interface=ether1 published=yesadd address=x.x.x..119 interface=ether1 published=yesadd address=x.x.x..120 interface=ether1 published=yesadd address=x.x.x..121 interface=ether1 published=yesadd address=x.x.x..122 interface=ether1 published=yesadd address=x.x.x..123 interface=ether1 published=yesadd address=x.x.x..124 interface=ether1 published=yesadd address=x.x.x..125 interface=ether1 published=yesadd address=x.x.x..126 interface=ether1 published=yesadd address=x.x.x..237 interface=ether1 published=yesadd address=x.x.x..238 interface=ether1 published=yesadd address=x.x.x..189.148 interface=ether1 published=yesadd address=x.x.x..189.149 interface=ether1 published=yesadd address=x.x.x..189.150 interface=ether1 published=yesadd address=x.x.x..189.151 interface=ether1 published=yesadd address=x.x.x..189.152 interface=ether1 published=yesadd address=x.x.x..189.153 interface=ether1 published=yesadd address=x.x.x..189.154 interface=ether1 published=yesadd address=x.x.x..189.155 interface=ether1 published=yesadd address=x.x.x..189.156 interface=ether1 published=yesadd address=x.x.x..189.157 interface=ether1 published=yesadd address=x.x.x..189.158 interface=ether1 published=yesadd address=x.x.x..189.162 interface=ether1 published=yesadd address=x.x.x..189.163 interface=ether1 published=yesadd address=x.x.x..189.164 interface=ether1 published=yesadd address=x.x.x..189.165 interface=ether1 published=yesadd address=x.x.x..189.166 interface=ether1 published=yesadd address=x.x.x..189.167 interface=ether1 published=yesadd address=x.x.x..189.168 interface=ether1 published=yesadd address=x.x.x..189.169 interface=ether1 published=yesadd address=x.x.x..189.170 interface=ether1 published=yesadd address=x.x.x..189.171 interface=ether1 published=yesadd address=x.x.x..189.172 interface=ether1 published=yesadd address=x.x.x..189.173 interface=ether1 published=yesadd address=x.x.x..189.174 interface=ether1 published=yesadd address=x.x.x..189.146 interface=ether1 published=yesadd address=x.x.x..189.147 interface=ether1 published=yes/ip dhcp-clientadd interface=ether1/ip dnsset allow-remote-requests=yes servers=8.8.8.8,8.8.4.4,1.0.0.1,1.1.1.1/ip ipsec policyadd peer=GAN-VPS tunnel=yes/ip routeadd gateway=45.145.166.1add dst-address=x.x.x..66/28 gateway=172.30.4.1add dst-address=x.x.x..67/28 gateway=172.30.4.1add dst-address=x.x.x..68/28 gateway=172.30.4.1add dst-address=x.x.x..69/28 gateway=172.30.4.1add dst-address=x.x.x..70/28 gateway=172.30.4.1add dst-address=x.x.x..71/28 gateway=172.30.4.1add dst-address=x.x.x..72/28 gateway=172.30.4.1add dst-address=x.x.x..73/28 gateway=172.30.4.1add dst-address=x.x.x..74/28 gateway=172.30.4.1add dst-address=x.x.x..75/28 gateway=172.30.4.1add dst-address=x.x.x..76/28 gateway=172.30.4.1add dst-address=x.x.x..77/28 gateway=172.30.4.1add dst-address=x.x.x..78/28 gateway=172.30.4.1add dst-address=x.x.x..157/30 gateway=172.30.4.1add dst-address=x.x.x..158/30 gateway=172.30.4.1add dst-address=x.x.x..82/30 gateway=172.30.4.1add dst-address=x.x.x..83/30 gateway=172.30.4.1add dst-address=x.x.x..84/30 gateway=172.30.4.1add dst-address=x.x.x..85/30 gateway=172.30.4.1add dst-address=x.x.x..86/30 gateway=172.30.4.1add dst-address=x.x.x..87/30 gateway=172.30.4.1add dst-address=x.x.x..88/30 gateway=172.30.4.1add dst-address=x.x.x..89/30 gateway=172.30.4.1add dst-address=x.x.x..90/30 gateway=172.30.4.1add dst-address=x.x.x..91/30 gateway=172.30.4.1add dst-address=x.x.x..92/30 gateway=172.30.4.1add dst-address=x.x.x..93/30 gateway=172.30.4.1add dst-address=x.x.x..94/30 gateway=172.30.4.1add dst-address=x.x.x..114/28 gateway=172.30.4.1add dst-address=x.x.x..115/28 gateway=172.30.4.1add dst-address=x.x.x..116/28 gateway=172.30.4.1add dst-address=x.x.x..117/28 gateway=172.30.4.1add dst-address=x.x.x..118/28 gateway=172.30.4.1add dst-address=x.x.x..119/28 gateway=172.30.4.1add dst-address=x.x.x..120/28 gateway=172.30.4.1add dst-address=x.x.x..121/28 gateway=172.30.4.1add dst-address=x.x.x..122/28 gateway=172.30.4.1add dst-address=x.x.x..123/28 gateway=172.30.4.1add dst-address=x.x.x..124/28 gateway=172.30.4.1add dst-address=x.x.x..125/28 gateway=172.30.4.1add dst-address=x.x.x..126/28 gateway=172.30.4.1add dst-address=x.x.x..237/30 gateway=172.30.4.1add dst-address=x.x.x..238/30 gateway=172.30.4.1add dst-address=x.x.x..189.148/28 gateway=172.30.4.1add dst-address=x.x.x..189.149/28 gateway=172.30.4.1add dst-address=x.x.x..189.150/28 gateway=172.30.4.1add dst-address=x.x.x..189.151/28 gateway=172.30.4.1add dst-address=x.x.x..189.152/28 gateway=172.30.4.1add dst-address=x.x.x..189.153/28 gateway=172.30.4.1add dst-address=x.x.x..189.154/28 gateway=172.30.4.1add dst-address=x.x.x..189.155/28 gateway=172.30.4.1add dst-address=x.x.x..189.156/28 gateway=172.30.4.1add dst-address=x.x.x..189.157/28 gateway=172.30.4.1add dst-address=x.x.x..189.158/28 gateway=172.30.4.1add dst-address=x.x.x..189.162/28 gateway=172.30.4.1add dst-address=x.x.x..189.163/28 gateway=172.30.4.1add dst-address=x.x.x..189.164/28 gateway=172.30.4.1add dst-address=x.x.x..189.165/28 gateway=172.30.4.1add dst-address=x.x.x..189.166/28 gateway=172.30.4.1add dst-address=x.x.x..189.167/28 gateway=172.30.4.1add dst-address=x.x.x..189.168/28 gateway=172.30.4.1add dst-address=x.x.x..189.169/28 gateway=172.30.4.1add dst-address=x.x.x..189.170/28 gateway=172.30.4.1add dst-address=x.x.x..189.171/28 gateway=172.30.4.1add dst-address=x.x.x..189.172/28 gateway=172.30.4.1add dst-address=x.x.x..189.173/28 gateway=172.30.4.1add dst-address=x.x.x..189.174/28 gateway=172.30.4.1add dst-address=x.x.x..189.163/28 gateway=172.30.4.1add dst-address=x.x.x..66/28 gateway=172.30.4.1add dst-address=x.x.x..67/28 gateway=172.30.4.1add dst-address=x.x.x..68/28 gateway=172.30.4.1add dst-address=x.x.x..69/28 gateway=172.30.4.1add dst-address=x.x.x..70/28 gateway=172.30.4.1add dst-address=x.x.x..71/28 gateway=172.30.4.1add dst-address=x.x.x..72/28 gateway=172.30.4.1add dst-address=x.x.x..73/28 gateway=172.30.4.1add dst-address=x.x.x..74/28 gateway=172.30.4.1add dst-address=x.x.x..75/28 gateway=172.30.4.1add dst-address=x.x.x..77/28 gateway=172.30.4.1add dst-address=x.x.x..78/28 gateway=172.30.4.1add dst-address=x.x.x..82/28 gateway=172.30.4.1add dst-address=x.x.x..83/28 gateway=172.30.4.1add dst-address=x.x.x..84/28 gateway=172.30.4.1add dst-address=x.x.x..85/28 gateway=172.30.4.1add dst-address=x.x.x..86/28 gateway=172.30.4.1add dst-address=x.x.x..87/28 gateway=172.30.4.1add dst-address=x.x.x..88/28 gateway=172.30.4.1add dst-address=x.x.x..89/28 gateway=172.30.4.1add dst-address=x.x.x..90/28 gateway=172.30.4.1add dst-address=x.x.x..91/28 gateway=172.30.4.1add dst-address=x.x.x..92/28 gateway=172.30.4.1add dst-address=x.x.x..93/28 gateway=172.30.4.1add dst-address=x.x.x..94/28 gateway=172.30.4.1add dst-address=x.x.x..114/28 gateway=172.30.4.1add dst-address=x.x.x..115/28 gateway=172.30.4.1add dst-address=x.x.x..116/28 gateway=172.30.4.1add dst-address=x.x.x..117/28 gateway=172.30.4.1add dst-address=x.x.x..118/28 gateway=172.30.4.1add dst-address=x.x.x..119/28 gateway=172.30.4.1add dst-address=x.x.x..120/28 gateway=172.30.4.1add dst-address=x.x.x..121/28 gateway=172.30.4.1add dst-address=x.x.x..122/28 gateway=172.30.4.1add dst-address=x.x.x..123/28 gateway=172.30.4.1add dst-address=x.x.x..124/28 gateway=172.30.4.1add dst-address=x.x.x..125/28 gateway=172.30.4.1add dst-address=x.x.x..126/28 gateway=172.30.4.1add dst-address=x.x.x..189.146/28 gateway=172.30.4.1add dst-address=x.x.x..189.147/28 gateway=172.30.4.1add dst-address=x.x.x..189.148/28 gateway=172.30.4.1add dst-address=x.x.x..189.149/28 gateway=172.30.4.1add dst-address=x.x.x..189.150/28 gateway=172.30.4.1add dst-address=x.x.x..189.151/28 gateway=172.30.4.1add dst-address=x.x.x..189.152/28 gateway=172.30.4.1add dst-address=x.x.x..189.153/28 gateway=172.30.4.1add dst-address=x.x.x..189.154/28 gateway=172.30.4.1add dst-address=x.x.x..189.155/28 gateway=172.30.4.1add dst-address=x.x.x..189.156/28 gateway=172.30.4.1add dst-address=x.x.x..189.157/28 gateway=172.30.4.1add dst-address=x.x.x..189.158/28 gateway=172.30.4.1add dst-address=x.x.x..189.162/28 gateway=172.30.4.1add dst-address=x.x.x..189.163/28 gateway=172.30.4.1add dst-address=x.x.x..189.164/28 gateway=172.30.4.1add dst-address=x.x.x..189.165/28 gateway=172.30.4.1add dst-address=x.x.x..189.166/28 gateway=172.30.4.1add dst-address=x.x.x..189.167/28 gateway=172.30.4.1add dst-address=x.x.x..189.168/28 gateway=172.30.4.1add dst-address=x.x.x..189.169/28 gateway=172.30.4.1add dst-address=x.x.x..189.170/28 gateway=172.30.4.1add dst-address=x.x.x..189.171/28 gateway=172.30.4.1add dst-address=x.x.x..189.172/28 gateway=172.30.4.1add dst-address=x.x.x..189.173/28 gateway=172.30.4.1add dst-address=x.x.x..189.174/28 gateway=172.30.4.1add dst-address=x.x.x..66/28 gateway=172.30.4.1add dst-address=x.x.x..67/28 gateway=172.30.4.1add dst-address=x.x.x..68/28 gateway=172.30.4.1add dst-address=x.x.x..69/28 gateway=172.30.4.1add dst-address=x.x.x..70/28 gateway=172.30.4.1add dst-address=x.x.x..71/28 gateway=172.30.4.1add dst-address=x.x.x..72/28 gateway=172.30.4.1add dst-address=x.x.x..73/28 gateway=172.30.4.1add dst-address=x.x.x..74/28 gateway=172.30.4.1add dst-address=x.x.x..75/28 gateway=172.30.4.1add dst-address=x.x.x..77/28 gateway=172.30.4.1add dst-address=x.x.x..78/28 gateway=172.30.4.1add dst-address=x.x.x..82/28 gateway=172.30.4.1add dst-address=x.x.x..83/28 gateway=172.30.4.1add dst-address=x.x.x..84/28 gateway=172.30.4.1add dst-address=x.x.x..85/28 gateway=172.30.4.1add dst-address=x.x.x..86/28 gateway=172.30.4.1add dst-address=x.x.x..87/28 gateway=172.30.4.1add dst-address=x.x.x..88/28 gateway=172.30.4.1add dst-address=x.x.x..89/28 gateway=172.30.4.1add dst-address=x.x.x..90/28 gateway=172.30.4.1add dst-address=x.x.x..91/28 gateway=172.30.4.1add dst-address=x.x.x..92/28 gateway=172.30.4.1add dst-address=x.x.x..93/28 gateway=172.30.4.1add dst-address=x.x.x..94/28 gateway=172.30.4.1add dst-address=x.x.x..114/28 gateway=172.30.4.1add dst-address=x.x.x..115/28 gateway=172.30.4.1add dst-address=x.x.x..116/28 gateway=172.30.4.1add dst-address=x.x.x..117/28 gateway=172.30.4.1add dst-address=x.x.x..118/28 gateway=172.30.4.1add dst-address=x.x.x..119/28 gateway=172.30.4.1add dst-address=x.x.x..120/28 gateway=172.30.4.1add dst-address=x.x.x..121/28 gateway=172.30.4.1add dst-address=x.x.x..122/28 gateway=172.30.4.1add dst-address=x.x.x..123/28 gateway=172.30.4.1add dst-address=x.x.x..124/28 gateway=172.30.4.1add dst-address=x.x.x..125/28 gateway=172.30.4.1add dst-address=x.x.x..126/28 gateway=172.30.4.1add dst-address=x.x.x..189.146/28 gateway=172.30.4.1add dst-address=x.x.x..189.147/28 gateway=172.30.4.1add dst-address=x.x.x..189.148/28 gateway=172.30.4.1add dst-address=x.x.x..189.149/28 gateway=172.30.4.1add dst-address=x.x.x..189.150/28 gateway=172.30.4.1add dst-address=x.x.x..189.151/28 gateway=172.30.4.1add dst-address=x.x.x..189.152/28 gateway=172.30.4.1add dst-address=x.x.x..189.153/28 gateway=172.30.4.1add dst-address=x.x.x..189.154/28 gateway=172.30.4.1add dst-address=x.x.x..189.155/28 gateway=172.30.4.1add dst-address=x.x.x..189.156/28 gateway=172.30.4.1add dst-address=x.x.x..189.157/28 gateway=172.30.4.1add dst-address=x.x.x..189.158/28 gateway=172.30.4.1add dst-address=x.x.x..189.162/28 gateway=172.30.4.1add dst-address=x.x.x..189.163/28 gateway=172.30.4.1add dst-address=x.x.x..189.164/28 gateway=172.30.4.1add dst-address=x.x.x..189.165/28 gateway=172.30.4.1add dst-address=x.x.x..189.166/28 gateway=172.30.4.1add dst-address=x.x.x..189.167/28 gateway=172.30.4.1add dst-address=x.x.x..189.168/28 gateway=172.30.4.1add dst-address=x.x.x..189.169/28 gateway=172.30.4.1add dst-address=x.x.x..189.170/28 gateway=172.30.4.1add dst-address=x.x.x..189.171/28 gateway=172.30.4.1add dst-address=x.x.x..189.172/28 gateway=172.30.4.1add dst-address=x.x.x..189.173/28 gateway=172.30.4.1add dst-address=x.x.x..189.174/28 gateway=172.30.4.1add dst-address=x.x.x..237/30 gateway=172.30.4.1add dst-address=x.x.x..238/30 gateway=172.30.4.1add dst-address=x.x.x..157/30 gateway=172.30.4.1add dst-address=x.x.x..158/30 gateway=172.30.4.1Statistics: Posted by xmrn87 — Tue May 21, 2024 1:13 pm