I'm trying to setup a bridge (not sure that is the correct term here) between 2 networks, each with its own ISP. I want each network to access the internet through its own ISP, but would like access from each network's LAN to the other one's LAN.
I'll refer to the attached image of the network topology to hopefully clear things up.
Network A with ISP A, NAS A, Router A (192.168.0.1) has a DD-WRT router attached via ethernet to Router A. The DD-WRT LAN IP is 192.168.0.254. It is also connected as a client (station these days) to Network B's router (192.168.1.1). The DD-WRT WAN IP is 192.168.1.254. So far so good.
On Router A, static routes are set to access 192.168.1.x via 192.168.0.254, and vice versa on Router B.
Here's the problem: I can access Network B from Network A, but not the other way around. I can ping the DD-WRT WAN from Network B, but that's it. No other connectivity from there. The firewall is disabled on the DD-WRT device. Where did I go wrong?
DD-WRT Device is an ASUS RT-AC3100 with firmware v3.0-r49418 (07/04/22).
Progress. I am able to connect from the B network to the DD-WRT router's WAN and get to its web page, but nothing beyond that. I guess I need to check the static routes of Router B.
Yes, that was the plan. However, it turns out that my neighbor's router doesn't support static routes, therefore they have to be put on every device that is going to access the other network. All is working now.
A NAS (and other LAN clients) usually have their own firewall which does not allow traffic from other subnets.
So you have to tweak the firewall of the NAS on side A to allow traffic from the other subnet.
If that is a problem you can NAT traffic coming out of the DDWRT router on br0 so side A sees that as local traffic
Provide you have not been tampering with Operating mode, the traffic from A to B should already be NATted because that is a WAN interface
(It is early and I did not have my morning coffee so I could be talking rubbish)
The firewalls on the NASs are properly configured. It was the lack of support for static routes on my neighbor's router that was still causing problems after allowing the WAN-LAN traffic with the DD-WRT IP tables.
Thanks, this worked. The DD-WRT router wasn't allowing WAN->LAN traffic from the WAN side. And network B's router does not support static routes therefore they had to be configured per device.