Hello,
Please steer me in the right direction to build the following:
– 3 x 25/7 internet lines to be used on two networks 192.168.50.0/24 and 192.168.150.0/24
– load balancing and speed limit to 192.168.50.0 to 10/5 the rest goes to the second network
– if any of the isp lines go down priority is on 192.168.50.0
– dyn.com (dyndns.org)
Any help appreciated. I had no problem doing redundancy or 2to2 but here i’m stumbled…
Thank you,
Yuri
If you already have a 2x2 setup, please post it so we can make suggestions where to alter for 3x2
On three PPPoE modems I have 25/7. I’m assigning DMZ on each modem to
192.168.2.2
192.168.3.2
192.168.4.2
Following steps from http://mum.mikrotik.com/presentations/US12/steve.pdf I have 3 wan going to 1 lan. So, how can I split the traffic to 2 lans (ether4 and ether5). Don’t care about dyndns anymore. Computers on 192.168.50.0/24 network will be using citrix all the time. I’m hoping load balancing will not cause citrix to disconnect.
/ip firewall mangle
# manually force local traffic to connected networks to stay in the main routing table
add action=accept chain=prerouting disabled=no dst-address=192.168.2.0/24
add action=accept chain=prerouting disabled=no dst-address=192.168.3.0/24
add action=accept chain=prerouting disabled=no dst-address=192.168.4.0/24
# rules that will sort the traffic into streams.
add action=mark-connection chain=prerouting connection-mark=no-mark disabled=no dst-address-type=!local \
in-interface=ether5 new-connection-mark=WAN1 passthrough=yes per-connection-classifier=both-addresses:3/0
add action=mark-connection chain=prerouting connection-mark=no-mark disabled=no dst-address-type=!local \
in-interface=ether5 new-connection-mark=WAN2 passthrough=yes per-connection-classifier=both-addresses:3/1
add action=mark-connection chain=prerouting connection-mark=no-mark disabled=no dst-address-type=!local \
in-interface=ether5 new-connection-mark=WAN3 passthrough=yes per-connection-classifier=both-addresses:3/2
# mangles to add the routing marks to the packets based on the connection mark in the PREROUTING CHAIN
add action=mark-routing chain=prerouting connection-mark=WAN1 disabled=no in-interface=ether5 \
new-routing-mark=ether1-mark passthrough=yes
add action=mark-routing chain=prerouting connection-mark=WAN2 disabled=no in-interface=ether5 \
new-routing-mark=ether2-mark passthrough=yes
add action=mark-routing chain=prerouting connection-mark=WAN3 disabled=no in-interface=ether5 \
new-routing-mark=ether3-mark passthrough=yes
add action=mark-routing chain=output connection-mark=WAN1 disabled=no new-routing-mark=ether1-mark passthrough=yes
add action=mark-routing chain=output connection-mark=WAN2 disabled=no new-routing-mark=ether2-mark passthrough=yes
add action=mark-routing chain=output connection-mark=WAN3 disabled=no new-routing-mark=ether3-mark passthrough=yes
# Identify which WAN interface the traffic came in and mark the connections appropriately.
add action=mark-connection chain=prerouting connection-mark=no-mark disabled=no \
in-interface=ether1 new-connection-mark=WAN1 passthrough=yes
add action=mark-connection chain=prerouting connection-mark=no-mark disabled=no \
in-interface=ether2 new-connection-mark=WAN2 passthrough=yes
add action=mark-connection chain=prerouting connection-mark=no-mark disabled=no \
in-interface=ether3 new-connection-mark=WAN3 passthrough=yes
/ ip route
# Create the unmarked default routes.
add dst-address=0.0.0.0/0 gateway=192.168.2.1 distance=1 check-gateway=ping
add dst-address=0.0.0.0/0 gateway=192.168.3.1 distance=2 check-gateway=ping
add dst-address=0.0.0.0/0 gateway=192.168.4.1 distance=3 check-gateway=ping
# Create the marked default routes
add dst-address=0.0.0.0/0 gateway=192.168.2.1 routing-mark=ether1-mark check-gateway=ping
add dst-address=0.0.0.0/0 gateway=192.168.3.1 routing-mark=ether2-mark check-gateway=ping
add dst-address=0.0.0.0/0 gateway=192.168.4.1 routing-mark=ether3-mark check-gateway=ping
Anybody?!