Hi all,

I have several days working on a Load Balancing solution over a Mikrotik 3.10. I have read all the wiki articles and all the forum post about nth and it's implementation, I have configured the router as I have read but it is impossible... this is not working and I am just sure that my problem is a trick but I am not able to see it. So please, help me discover where my configuration fails.

Here we go....

My interfaces configuration



I have three interfaces and two xDSL lines, one interface is for LAN, other interface ADSL1 has a RFC 1483 Fixed IP and ADSL2 has a PPPoE client over it with the next configuration...



I am trying to balance network load into the two adsl lines. So I have configured the Mangle as I see on the forum. I marked pakets...then connections and then routing ....



As you can see the first rule is a TS port mark in order to have TS administration on the LAN side windows 2000 Server.
The next 6 rules are the Packet Marks, the Connection Marks and the Routing Marks Assignaments.

OK. Just here all works good, the counters runs up and it maintain a correlation...

The problems begins here....



The first and second rules is a reverse nat to admin the lan interface of the router giving the PPPoE bridge, and a rule for TS.It works OK,
The next three rules comes from the mangle and makes the masquerading based on the connection-marks. The last rule is a general nat.
The problem here is that counters don't work correctly. Rule 2 works good but rule 3 is 0 and I suppouse that it's traffic is being applied to rule 4 (General)
I really don't know why.

The IP routes....


The IP routes has a default route number 0 and NTH routes.... based on routing marks assigned by NAT.

I also have a routing rule to 0.0.0.0/0 80.XXX.XXX.130 with routgin mark 200 due to my needs of remote administration.

The Ip routing rules are...



That's all folks.... THe route balancing is not working... all the traffic is going through the ADSL2 interface (aka pppoe) and only the administration traffic is working on ADSL1 (aka RFC1483).

I have tested all configuration possibilities, but I am not getting any results. If I dissabled the route rule 0, ir is suppoused that it will go applying the routing marks by nat... but the problem is that in connection log I have many "syn sent" entries and no traffic at all.

Greetings to all, greeted in advance for your time....

Tete
Spain.

_________________
===========================
Antonio Sanchez
System Administrator
===========================

===========================
Granada (Spain)

In /ip firewall mangle print you have all the rules disabled ( x on the left side ), if this is the running state......... as you can imagine they will not function at al.

Ciao
Alessandro

This rules are disabled in order to maintain the router on service.... But with this rules enabled... this don't work....

I have notice that I can ping out from the router but from the lan it is impossible, it gives me the first answer but no the next ones.

I also have noticed that in /firewall connections is there many syn sent or syn receibed....

Greetings

_________________
===========================
Antonio Sanchez
System Administrator
===========================

===========================
Granada (Spain)

I also have this same problem, once NTH is running, i can ping from the router to the LAN but i cannot ping from user to user on the LAN. Please help, this is making my servers unreachable.

Regards

Use PCC instead. It can guarantee that connections between the same two endpoints always go across the same link.

Hey the thing is i run hotspot on the network and when i tried PCC on my hotspot, i observed the loadbalancing was not working effectively but with NTH it works perfectly! Is there a firewall statement that could just permit access from all network(i have 8 VLANs) to an inside server say 10.2.1.13, while still using NTH?
If you think PCC is a better option, could you provide me with sample script to make it work well for hotspot? (i am load balancing across 3 wan links)

Regards