Hi,
I'm confused if I have a NAT or Firewall problem.
I have two Edgerouters, ER1 & ER2 linked by Nanobeams over a mile or two.
ER1 has eth0 WAN connection to outside world.
ER2 eth0 masquerades WAN from ER1 which all works fine, all devices/APs on ER2 have internet access fine, and can ping devices in ER1 LANs.
My problem is I cant ping any devices in ER2 from anywhere within ER1.
The reason for having 2 routers is that ER2 is routing a whole bunch of industrial PLCs/SCADA etc so if the Nanobeam link is dropped I still want ER2 to do the routing for its own LANs.
Do I need to turn off NAT on ER2? Is it as simple as deleting the rule from the NAT page in the GUI?
Or what settings in ER2 firewall need to be adjusted to allow ER1 access to ER2?
Thanks in advance.
