Добрый день . Проблемма жуткая настигла меня имею два бриджа 1: eth2. eth3. wlan2 2: eth 4 eth5 wlan1 так сети пингуются но если я забиваю в комп с адресом 192.168.2.5 подключенным в 4 порт адрес 192.168.1.5 то он не пингуется в 192.168.1.1 какие правила создать поскажите чтобы он влазил в сеть бриджа 1го
вот кусок экспорт компакт) Спойлер: export ip pool add name=pool_vlan1 ranges=192.168.1.200-192.168.1.250 add name=pool_vlan2 ranges=192.168.2.200-192.168.2.250 /ip dhcp-server add address-pool=pool_vlan1 authoritative=after-2sec-delay disabled=no \ interface=bridge name=server_vlan1 add address-pool=pool_vlan2 authoritative=after-2sec-delay disabled=no \ interface=bridge2 lease-time=3h name=server_vlan2 /interface bridge port add bridge=bridge comment=1 interface=ether2-LAN1 add bridge=bridge2 comment=2 interface=wlan1 add bridge=bridge comment=1 interface=wlan2 add bridge=bridge comment=1 interface=ether3 add bridge=bridge2 comment=2 interface=ether5 add bridge=bridge2 comment=2 interface=ether4 /ip address add address=192.168.2.1/24 interface=bridge2 network=192.168.2.0 add address=192.168.1.1/24 comment="Server " disabled=yes interface=bridge2 \ network=192.168.1.0 add address=192.168.1.1/24 interface=bridge network=192.168.1.0 /ip dhcp-client add comment=defconf dhcp-options=hostname,clientid interface=ether1-WAN /ip dhcp-server network add address=192.168.1.0/24 gateway=192.168.1.1 netmask=24 add address=192.168.2.0/24 dns-server=8.8.8.8 gateway=192.168.2.1 /ip dns set allow-remote-requests=yes servers=8.8.8.8,4.4.4.4 /ip firewall filter add action=accept chain=input comment="defconf: accept ICMP" disabled=yes \ protocol=icmp add action=accept chain=input comment="defconf: accept established,related" \ connection-state=established,related disabled=yes add action=drop chain=input comment="defconf: drop all from WAN" disabled=yes \ in-interface=ether1-WAN add action=fasttrack-connection chain=forward comment="defconf: fasttrack" \ connection-state=established,related disabled=yes add action=accept chain=forward comment="defconf: accept established,related" \ connection-state=established,related disabled=yes add action=drop chain=forward comment="defconf: drop invalid" connection-state=\ invalid disabled=yes add action=drop chain=forward comment=\ "defconf: drop all from WAN not DSTNATed" connection-nat-state=!dstnat \ connection-state=new disabled=yes in-interface=ether1-WAN add action=accept chain=forward in-interface=bridge2 out-interface=bridge add action=accept chain=forward dst-address-list=192.168.1.240-192.168.1.270 \ in-interface=bridge out-interface=bridge2 add action=accept chain=forward disabled=yes dst-address=192.168.2.5 \ in-interface=bridge out-interface=bridge2 src-address=192.168.1.5 /ip firewall nat add action=masquerade chain=srcnat comment="defconf: masquerade" add action=dst-nat chain=dstnat dst-port=34567 protocol=tcp to-addresses=\ 192.168.1.30 to-ports=34567 add action=dst-nat chain=dstnat dst-port=554 protocol=tcp to-addresses=\ 192.168.1.30 to-ports=554
