[143014] in North American Network Operators' Group
Re: Comcast Bussiness Class and GRE Tunnels
daemon@ATHENA.MIT.EDU (Jon Bane)
Tue Jul 26 11:46:35 2011
In-Reply-To: <CAJAdsDnc61TQ3mft9E6+0tjx=oafoNJvL8LkX_5huzvcJ-7Axw@mail.gmail.com>
From: Jon Bane <jon@nnbfn.net>
Date: Tue, 26 Jul 2011 11:45:30 -0400
To: NANOG list <nanog@nanog.org>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
On Tue, Jul 26, 2011 at 11:38 AM, PC <paul4004@gmail.com> wrote:
> I have GRE tunnels and l2tp tunnels over those comcast boxes. l2tp is less
> hassle because it handles NAT, but you can do GRE instead -- just make sure
> you assign yourself a public static IP.
>
> First, go into the gateway and make sure all firewalls are disabled (it has
> a web GUI).
>
> Second, if it's the comcast SMC 4 port "gateway" thing I think it is, the
> device is somewhat retarded. You plug into the switch and pull DHCP, and
> you get a natted address and it routes.
>
> You can plug into the same switch and set a static IP on your device
> (internet public IP), and it will work without NAT, assuming your account
> has a static IP.
>
> Set said static IP on your microtik box and it should pass end-to-end
> without drops.
>
>
Was working on the same reply as Paul. You assign your static to your
Mircotik box and check the box in the WebGUI (default is http://10.1.10.1)
to "Disable Firewall for True Static IP Subnet Only" on the firewall tab.
-Jon
