3 router 2 networks want to see each other + share internet [closed]

networking static-routes

I am trying to get my main network to see my homelab network (separate subnets) and both networks have access to the internet. I have tried several approaches and now have 4 routers in the configuration shown below

Network Layout

As you can see I have attempted to add static routes to the 'joining' router and from a machine on the main network (192.168.0.111) I have been using ping to test things out and I am drawing a blank. I have tried with the firewall switched off (on all routers and 0.111) as well to avoid any ICMP interference from it.

so

  1. Ping 192.168.0.1 - works
  2. Ping 192.168.2.64 - works
  3. Ping 192.168.2.1 - work
  4. Ping 192.168.2.70 - Timeout (so is seeing it no return path)
  5. Ping 192.168.4.1 - Timeout

When tried from the 4.0/24 side I have the same problems going from 2.70 -> 2.64

Both sides have no issue getting to 1.254 and beyond!

Many thanks for any assistance.


Solution 1:

It looks like several routers on your network are not behaving as expected. This is most likely due to them acting as NAT gateways in addition to performing the routing functions.

These are TL-WR841N (192.168.2.70) AX6000 (192.168.2.64)

If my assumption is correct, this would explain why your hosts in the subnets 192.168.4/24 and 192.168.0/24 cannot be pinged from outside their subnets. Hosts 'behind' a NAT gateway (host that are on the private subnet) cannot be pinged from the public network. Not without additional configuration.

In the case of AX6000 for example, both subnets that it is connected to are private (192.168.2/24 and 192.168.0/24) however, but the limitation still applies if the router is in NAT mode.

I suggest that you try to determine if the two routers mentioned, are operating in NAT mode.

To test this, you can set a host IP in the subnet 192.168.0/24 as a 'DMZ host' on the AX6000 router, as it is usually called. You can then try to ping the host from an outside subnet.

Alternatively, you could set up a service on the host in the 192.168.0/24 subnet that you can easily verify if it is running. A webserver for example. Then configure a port forwarding on the AX6000 router and test if you can reach the webserver from outside the 192.168.0/24 subnet.

If this works, then the routers are acting as NAT gateways and you need to configure them to do routing only. Usually this is done by configuring the router to operate in Access Point / AP mode.

To disable NAT on the AX6000, I found this:

https://www.tp-link.com/us/support/faq/540/

  1. Step 1 Login the management page of router. Please refer to [FAQ ID: 87] , if you don’t know how to login on the management page.
  2. Step 2 Click NAT on the left panel
  3. Step 3 Find the radio button of “Current NAT Status”

Related

Clear cached authentication for network share
Zero downtime with Kubernetes on top of GlusterFs on top of a ZFS raid - Is this the best solution?
Custom error page apache
How to make a folder accessible with remote domain url?
cant create/add new Virtual Machine on Azure Portal error on resources
access to the Google Cloud Storage bucket
Does a domain's Glue Records get transferred when I transfer the domain to another registrar?
Authentication based on any of the PAM module
Is it required to register a name server with GLUE records?
Apache2: nested require statements within Location
Moving Files After Conversion to pdf
How to reset the admin password for Observium