2 Wan and 1 Lan with Static Load Balancing and PPTP VPN Question
After searching through many websites i could not find a final answer but somehow it is working now. However i would like to know if this
configuration is OK.
Basically i have:
WAN 1 : 10.0.0.1 Will be the only public ip used for VPN
WAN 2 : 10.0.0.2
LAN 1 : 192.168.1.X/24 Gateway 192.168.1.254
In my example i only have three computers
Pc1: Will get the ip address 192.168.1.1 and will use WAN1
Pc2: Will get the ip address 192.168.1.2 and will use WAN2
and
Pc3: Will be outside the lan,but will be connected into the lan through a PPTP VPN, will get ip address 192.168.1.100 and will use WAN1.
This configuration seems to be working fine
/ip firewall mangle
add action=mark-connection chain=input disabled=no in-interface=
ether1-isp1 new-connection-mark=isp1-in passthrough=yes
add action=mark-routing chain=output connection-mark=isp1-in disabled=no
new-routing-mark=isp1-out passthrough=no
add action=mark-routing chain=prerouting new-routing-mark=isp1-out disabled=no
passthrough=no src-address=192.168.1.1
add action=mark-routing chain=prerouting new-routing-mark=isp2-out disabled=no
passthrough=no src-address=192.168.1.2
ip route
add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=[WAN1]
routing-mark=isp1-out scope=30 target-scope=10
add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=[WAN2]
routing-mark=isp2-out scope=30 target-scope=10
The VPN seems to be working fine, 192.168.1.1 gets the public ip from WAN1 and 192.168.1.2 gets the public ip from WAN2.
I was afraid that this configuration might be onsecure or something else. What do you think, is it ok for production?
Thanks Guys