this the scenario i have in mind.

i have 2 ISP
WAN 1 = 8 Mbps DSL
WAN 2 = 30 Mbps PPOE

i'm trying to use both on 1 mikrotik device, but i don't want customers to find out what's WAN 2 isp when they go to www.speedtest.net

any ideas or suggestions ?

If you create a VPN, through WAN2, then IP that is registered will be the end point of that VPN.

Vpn needs the second end. All traffic could be sent thru public proxy, but it will be really bad. Otherwise you cannot hide your wan outgoing ip address.

Sent from Android by Tapatalk.

so what do to ?

how can i use my DSL wan to be as the only ip showing for customers while using both WAN's bandwidth ?

You can buy connectivity in some peering centre and put there your own proxy. But it will not be cheap.

Sent from Android by Tapatalk.

any other ideas included in Mikrotik since it looks like a complete system ?

Strictly to the letter of your request...you could break out across a VPN to another Mikrotik but you still need it hosted at another ISP somewhere. Basically you can't just 'pretend' that your public IP is something that it is not. Responses to your outbound requests would never get back to you.

how about forwarding some websites through a specific WAN interface i define, such as www.speedtest.net ??

how about forwarding some websites through a specific WAN interface i define, such as http://www.speedtest.net ??

The way are:
know what are the pool of address used by speedtest.net

add each pool on addtess-list called list-speedtest

on mangle use mark route on prerouting, mark route as "speedtest" when dst-list ip are on the list-speedtest

make static route destination 0.0.0.0/0 gateway=ip_of_wan_you_want_for_exit where mark="speedtest"

done.


But remember, each client have many way to know what ip have....

how about forwarding some websites through a specific WAN interface i define, such as http://www.speedtest.net ??

The way are:
know what are the pool of address used by speedtest.net

add each pool on addtess-list called list-speedtest

on mangle use mark route on prerouting, mark route as "speedtest" when dst-list ip are on the list-speedtest

make static route destination 0.0.0.0/0 gateway=ip_of_wan_you_want_for_exit where mark="speedtest"

done.


But remember, each client have many way to know what ip have....

enlighten me please if you have any good ideas like the one you just gave me.

Read my other posts on this forum, so many script and ideas!
http://forum.mikrotik.com/search.php?ke ... mit=Search

Also are present ideas from other users, use search.

If you have any needs, open in appropriate section the request.
I and all the other users, can help you!

this the scenario i have in mind.

i have 2 ISP
WAN 1 = 8 Mbps DSL
WAN 2 = 30 Mbps PPOE

i'm trying to use both on 1 mikrotik device, but i don't want customers to find out what's WAN 2 isp when they go to http://www.speedtest.net

any ideas or suggestions ?

So let me see if I have this correct. You want to give your clients an 8Mbps connection until they want to test the connection speed, then you want it to show 30Mbps. Is that right? If so, I won't help you. I have an ethical objection to that business practice.

Please tell me I am incorrect.

this the scenario i have in mind.

i have 2 ISP
WAN 1 = 8 Mbps DSL
WAN 2 = 30 Mbps PPOE

i'm trying to use both on 1 mikrotik device, but i don't want customers to find out what's WAN 2 isp when they go to http://www.speedtest.net

any ideas or suggestions ?

So let me see if I have this correct. You want to give your clients an 8Mbps connection until they want to test the connection speed, then you want it to show 30Mbps. Is that right? If so, I won't help you. I have an ethical objection to that business practice.

Please tell me I am incorrect.

SurferTim:
Virtual -1 for impolite answer.

Have you read all the thread before judging?
If you consider this immoral, why answer?
Simply do not partecipate on this thread.

The user want aggregate the bandwidth,
but he do not want reveal the name of the concurrent company, provider of the 30Mbps.

@rextended: I have given you karma for your other answers to my questions, but I would be careful about judging my ethics. It is not impolite to ask a user about his/her intentions. I am a member of other forums where my responses could affect more than just the OP and myself. If you think that a cruise missile or a predator drone can be built by just governments, rethink that again. I may unintentionally help a user detonate a WMD, but I'll be damned if I will help them deliver it. Just my opinion...

>>>I have given you karma for your other answers to my questions
I hope you are not regret for this, and I hope, Karma or not, I wanna help you in other occasions.

>>>It is not impolite to ask a user about his/her intentions.
Yes, but first ask, then eventually judge.
This is what have hurted my opinion.
And remember: I'm not English, can happen than I use not correctly some terms.

>>> I am a member of other forums where my responses could affect more than just the OP and myself. If you think that a cruise missile or a predator drone can be built by just governments, rethink that again. I may unintentionally help a user detonate a WMD, but I'll be damned if I will help them deliver it. Just my opinion...

You really compare mangle and routing with weapons?

Seriously?

After that, I only read your reply, if you want reply, but I not write again about this.

Ciao.

Please tell me I am incorrect.

The OP only has to tell me I am incorrect. The difference between a little tiny bit unethical and a lot unethical isn't much to me. My past experiences has shown me that one leads to the other.

@rextended: This isn't aimed at you. I don't regret giving you the karma you deserved.

this the scenario i have in mind.

i have 2 ISP
WAN 1 = 8 Mbps DSL
WAN 2 = 30 Mbps PPOE

i'm trying to use both on 1 mikrotik device, but i don't want customers to find out what's WAN 2 isp when they go to http://www.speedtest.net

any ideas or suggestions ?

So let me see if I have this correct. You want to give your clients an 8Mbps connection until they want to test the connection speed, then you want it to show 30Mbps. Is that right? If so, I won't help you. I have an ethical objection to that business practice.

Please tell me I am incorrect.

so incorrect

8 Mbps line is from MADA ISP
30 Mbps line is from Netvision ISP

I want customers to have good speed using one or both lines if required but, I don't want them to find out that Netvision is my second ISP, i was hoping there is way to show them my ISP as MADA only.

Then you have my apology.

However. I am not sure why this is important. My customers use speedtest.net, and it shows the appropriate ISP for each of my connections. It still appears to me this is slightly deceptive.

business secrets i don't want to share with the customers.
do i have to buy a subnet of real ip addresses in order to make this work or this is a method anyone can help with ?

If speedtest.net uses a reverse dns lookup, you can contact your ISP, and if they are ok with it, they can change the reverse dns lookup to show your domain. I did this with my ISP and my email server IP so I wouldn't get rejections because the reverse dns did not show the correct server.

If speedtest uses ARPA registration records, it won't make any difference changing your reverse dns.

i don't have a domain and i don't think my ISP will agree.
that's why i was looking for a solution around.

rextended's idea of sending speedtest.net traffic only out of one line will work, but then a) you will have to maintain this list forever b) there may be other sites/applications that will reveal the same information. You are fighting a losing battle.

rextended's idea of sending speedtest.net traffic only out of one line will work, but then a) you will have to maintain this list forever b) there may be other sites/applications that will reveal the same information. You are fighting a losing battle.

True.

But remember, each client have many way to know what ip have....

what about tracing, the tracert command how to make it go through specific wan interface ?

Windows tracert uses icmp echo requests, so that's easy to filter out and route through the right interface.

But as others already suggested, you can't win.

Linux traceroute uses udp and ports seem to be pretty much random. And there's traceproto and it can use tcp with any port. So there's basically nothing you can route through the second connection without the risk of its address being revealed. Even if you aimed at fooling only unskilled Windows users, there's still possibility that any random website will show the address.

well i'm aiming at fooling unskilled windows users who thinks linux is another brand of computers such as macbook

what about route filters over here? someone told me they can do it over cisco routers.