Status: RouterOS Beginner (have only configured a firewall on RouterOS so far), good skills in Linux
Hardware is: CCR1009-8G-1S-1S+
Situation:
lan: 2 internal networks on (sfplus1 + ether1) and ether2 (192.168.1.1/24, 192.168.2.2/24)
out: 2 different DSL Providers on ether5 and ether6 (172.16.1.1/24 172.16.2.2/24)
Tasks to do:
-
None of the DSL Providers should see each other (ether5/ether6)
-
All clients from ether1 use the provider at ether5
-
All clients from ether2 use the provider at ether6
-
If one of the DSL lines fails, all should be routed through the remaining out interface (ether5/6).
-
Connection from ether5 to ether1 are allowed (http,https)
-
All other connections from ether5, ether 6 are denied
-
All connections from ether1 and ether2 are allowed to their corresponding interfaces on ether5/ether6.
-
ether1 is dhcp client
-
ether2 is dhcp server
-
ether5 gets dhcp-addr from gw in lan2/ether2 (relaying)
-
ether6 has static ip
-
DNS for ether1 comes from internal (.local) all other requests from ether5 DNS setup
-
DNS for ether2 comes from ether6 DNS setup
-
The two internal networks are totaly separated, but some (not all) services on ether1 are used by ether2, too (http/https).
-
None of the services from lan2 should be available to lan1 (security).
Any help would be appreciated to solve the task list, at the moment i’m stuck with most of it due to a lack of knowledge on routeros.