I'm having problems with load balance since upgrade to ver 4, I downgraded but lost config (no backups!) so I had to recreate it, but still having the same problem:
Sometimes webpages would not open, just gives 'cannot display...' or just a white screen in IE, sometimes webpage download but it seems 'corrupt', i.e. does not load completely, frames out of place, etc.
I'm not sure if it's a MTU/MSS issue or with my LoadBalance config.
I load balance 6 lines, the first 4 (WAN1-WAN4)is static IP ADSL routers, the last two(ADSL5 & ADSL6) is dynamic IP pppoe-clients. My ISP says that MTU is 1492 but I left default pppoe-client setting as 1480.
I tried to change the WAN1-4 MTU to 1480, 1440, 1454, etc. but still same problem. I tried to create change-MSS rules for WAN1-4 so it's the same rules as the automatic created for pppoe, but no change. After a test with www.speedguide.net, hich gave erratic results, I added rule below to change to lowest value that speedguide gave:
add action=change-mss chain=forward new-mss=1414 protocol=tcp tcp-flags=syn
With this rule it works much better, but still not like it was/should be. If I disable this rule, it is much worse but even with it I still get timeouts and have to refresh to get a page loaded.
Any advice on MTU/MSS issues regarding my mixed-adsl setup or possible problems in my config below would be greatly appreciated.
Thanks in advance
Ekkas
/ip address
add address=10.1.1.4/24 interface=TRUE
add address=000.36.9.146/29 interface=WAN1
add address=000.212.64.187/29 interface=WAN2
add address=000.34.167.131/29 interface=WAN3
add address=000.212.66.179/29 interface=WAN4
/ip firewall mangle
add action=change-mss chain=forward new-mss=1414 protocol=tcp tcp-flags=syn
#rule to send out to mail server
add action=mark-connection chain=prerouting in-interface=TRUE connection-state=new dst-address=000.36.9.144/29 new-connection-mark=Cwan1 passthrough=yes comment="MAIL SERVER"
add action=mark-routing chain=prerouting in-interface=TRUE connection-mark=Cwan1 new-routing-mark=Rwan1 passthrough=no comment="MAIL ROUTE"
#mark all https and a dst-address-list traffic to go out 1 WAN
add action=mark-connection chain=prerouting connection-state=new dst-port=443,2222,8443,5192 in-interface=TRUE new-connection-mark=Cwan6 passthrough=yes protocol=tcp comment="CMark https+other ports"
add action=mark-connection chain=prerouting connection-state=new dst-address-list=LFOUR in-interface=TRUE new-connection-mark=Cwan6 passthrough=yes comment="CMark addr.list"
add action=mark-routing chain=prerouting connection-mark=Cwan6 in-interface=TRUE new-routing-mark=Rwan6 passthrough=no comment="RM443 *WAN5"
#mark all incoming from TRUE with Nth
add action=mark-connection chain=prerouting comment=CM1 connection-state=new in-interface=TRUE new-connection-mark=Cwan1 nth=6,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM1 connection-mark=Cwan1 in-interface=TRUE new-routing-mark=Rwan1 passthrough=no
add action=mark-connection chain=prerouting comment=CM2 connection-state=new in-interface=TRUE new-connection-mark=Cwan2 nth=5,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM2 connection-mark=Cwan2 in-interface=TRUE new-routing-mark=Rwan2 passthrough=no
add action=mark-connection chain=prerouting comment=CM3 connection-state=new in-interface=TRUE new-connection-mark=Cwan3 nth=4,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM3 connection-mark=Cwan3 in-interface=TRUE new-routing-mark=Rwan3 passthrough=no
add action=mark-connection chain=prerouting comment=CM4 connection-state=new in-interface=TRUE new-connection-mark=Cwan4 nth=3,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM4 connection-mark=Cwan4 in-interface=TRUE new-routing-mark=Rwan4 passthrough=no
add action=mark-connection chain=prerouting comment=CM5 connection-state=new in-interface=TRUE new-connection-mark=Cwan5 nth=2,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM5 connection-mark=Cwan5 in-interface=TRUE new-routing-mark=Rwan5 passthrough=no
add action=mark-connection chain=prerouting comment=CM6 connection-state=new in-interface=TRUE new-connection-mark=Cwan6 passthrough=yes
add action=mark-routing chain=prerouting comment=RM6 connection-mark=Cwan6 in-interface=TRUE new-routing-mark=Rwan6 passthrough=no
/ip route
add comment=WAN1 dst-address=0.0.0.0/0 gateway=000.36.9.145 routing-mark=Rwan1
add comment=WAN2 dst-address=0.0.0.0/0 gateway=000.212.64.185 routing-mark=Rwan2
add comment=WAN3 dst-address=0.0.0.0/0 gateway=000.34.167.129 routing-mark=Rwan3
add comment=WAN4 dst-address=0.0.0.0/0 gateway=000.212.66.177 routing-mark=Rwan4
add comment=WAN5 dst-address=0.0.0.0/0 gateway=ADSL5 routing-mark=Rwan5
add comment=WAN6 dst-address=0.0.0.0/0 gateway=ADSL6 routing-mark=Rwan6
add comment=ALL dst-address=0.0.0.0/0 gateway=000.34.167.129 distance=2
#static route to network (TRUE interface)
add dst-address=10.0.0.0/8 gateway=10.1.1.254 comment="Wireless network"
add dst-address=192.168.168.0/24 gateway=10.1.1.254 comment="LAN"
/ip firewall nat
add action=src-nat chain=srcnat comment=WAN1 connection-mark=Cwan1 to-addresses=000.36.9.146
add action=src-nat chain=srcnat comment=WAN2 connection-mark=Cwan2 to-addresses=000.212.64.187
add action=src-nat chain=srcnat comment=WAN3 connection-mark=Cwan3 to-addresses=000.34.167.131
add action=src-nat chain=srcnat comment=WAN4 connection-mark=Cwan4 to-addresses=000.212.66.179
add action=masquerade chain=srcnat comment=ADSL5 out-interface=ADSL5
add action=masquerade chain=srcnat comment=ADSL6 out-interface=ADSL6
/ip address
add address=10.1.1.4/24 interface=TRUE
add address=000.36.9.146/29 interface=WAN1
add address=000.212.64.187/29 interface=WAN2
add address=000.34.167.131/29 interface=WAN3
add address=000.212.66.179/29 interface=WAN4
/ip firewall mangle
add action=change-mss chain=forward new-mss=1414 protocol=tcp tcp-flags=syn
#rule to send out to mail server
add action=mark-connection chain=prerouting in-interface=TRUE connection-state=new dst-address=000.36.9.144/29 new-connection-mark=Cwan1 passthrough=yes comment="MAIL SERVER"
add action=mark-routing chain=prerouting in-interface=TRUE connection-mark=Cwan1 new-routing-mark=Rwan1 passthrough=no comment="MAIL ROUTE"
#mark all https and a dst-address-list traffic to go out 1 WAN
add action=mark-connection chain=prerouting connection-state=new dst-port=443,2222,8443,5192 in-interface=TRUE new-connection-mark=Cwan6 passthrough=yes protocol=tcp comment="CMark https+other ports"
add action=mark-connection chain=prerouting connection-state=new dst-address-list=LFOUR in-interface=TRUE new-connection-mark=Cwan6 passthrough=yes comment="CMark addr.list"
add action=mark-routing chain=prerouting connection-mark=Cwan6 in-interface=TRUE new-routing-mark=Rwan6 passthrough=no comment="RM443 *WAN5"
#mark all incoming from TRUE with Nth
add action=mark-connection chain=prerouting comment=CM1 connection-state=new in-interface=TRUE new-connection-mark=Cwan1 nth=6,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM1 connection-mark=Cwan1 in-interface=TRUE new-routing-mark=Rwan1 passthrough=no
add action=mark-connection chain=prerouting comment=CM2 connection-state=new in-interface=TRUE new-connection-mark=Cwan2 nth=5,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM2 connection-mark=Cwan2 in-interface=TRUE new-routing-mark=Rwan2 passthrough=no
add action=mark-connection chain=prerouting comment=CM3 connection-state=new in-interface=TRUE new-connection-mark=Cwan3 nth=4,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM3 connection-mark=Cwan3 in-interface=TRUE new-routing-mark=Rwan3 passthrough=no
add action=mark-connection chain=prerouting comment=CM4 connection-state=new in-interface=TRUE new-connection-mark=Cwan4 nth=3,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM4 connection-mark=Cwan4 in-interface=TRUE new-routing-mark=Rwan4 passthrough=no
add action=mark-connection chain=prerouting comment=CM5 connection-state=new in-interface=TRUE new-connection-mark=Cwan5 nth=2,1 passthrough=yes
add action=mark-routing chain=prerouting comment=RM5 connection-mark=Cwan5 in-interface=TRUE new-routing-mark=Rwan5 passthrough=no
add action=mark-connection chain=prerouting comment=CM6 connection-state=new in-interface=TRUE new-connection-mark=Cwan6 passthrough=yes
add action=mark-routing chain=prerouting comment=RM6 connection-mark=Cwan6 in-interface=TRUE new-routing-mark=Rwan6 passthrough=no
/ip route
add comment=WAN1 dst-address=0.0.0.0/0 gateway=000.36.9.145 routing-mark=Rwan1
add comment=WAN2 dst-address=0.0.0.0/0 gateway=000.212.64.185 routing-mark=Rwan2
add comment=WAN3 dst-address=0.0.0.0/0 gateway=000.34.167.129 routing-mark=Rwan3
add comment=WAN4 dst-address=0.0.0.0/0 gateway=000.212.66.177 routing-mark=Rwan4
add comment=WAN5 dst-address=0.0.0.0/0 gateway=ADSL5 routing-mark=Rwan5
add comment=WAN6 dst-address=0.0.0.0/0 gateway=ADSL6 routing-mark=Rwan6
add comment=ALL dst-address=0.0.0.0/0 gateway=000.34.167.129 distance=2
#static route to network (TRUE interface)
add dst-address=10.0.0.0/8 gateway=10.1.1.254 comment="Wireless network"
add dst-address=192.168.168.0/24 gateway=10.1.1.254 comment="LAN"
/ip firewall nat
add action=src-nat chain=srcnat comment=WAN1 connection-mark=Cwan1 to-addresses=000.36.9.146
add action=src-nat chain=srcnat comment=WAN2 connection-mark=Cwan2 to-addresses=000.212.64.187
add action=src-nat chain=srcnat comment=WAN3 connection-mark=Cwan3 to-addresses=000.34.167.131
add action=src-nat chain=srcnat comment=WAN4 connection-mark=Cwan4 to-addresses=000.212.66.179
add action=masquerade chain=srcnat comment=ADSL5 out-interface=ADSL5
add action=masquerade chain=srcnat comment=ADSL6 out-interface=ADSL6