Basically my setup i need to get working is this. (all WAN links are PPOE)
WAN1 = TPG (general traffic goes out this and never goes out WAN2 even if WAN 1 goes down.)
WAN2 = aaNet (web traffic from LAN goes out this, DNS, VOIP etc but if down this traffic uses WAN1)
Note that incomming connections should be treated differently on the different WANs and may map to different PC’s
LAN = 192.168.1.1/24 with DHCP server and set as gateway on all machines
aaNet-modem = 10.0.0.1/30 no dhcp and no default gateway for items on this network.
TPG-modem = 10.0.0.5/30 no dhcp and no default gateway for items on this network.
Hotspot = 192.168.10.1/24 with DHCP server and set as gateway on all machines
HomeWifi = 192.168.2.1/24 with DHCP server and set as gateway on all machines
LAN can access LAN, aaNet-modem, TPG-modem, HomeWifi, router, internet.
HomeWifi can access LAN, HomeWifi, internet.
Hotspot can access Hotspot, internet.
aaNet-modem can’t access anything.
TPG-modem can’t access anything.
incoming ports
aaNet
22 → 192.168.1.15
80 - > 192.168.1.15
10000 → 192.168.1.15
TPG
22 → router
80 → 192.168.1.6
I am just having trouble working out what interfaces to put the snat or mascaraed on and getting the firewall rules protecting my networks correctly. I have it partly working with one internet connection but i am worried my router is not secure and i can;t get port forwarding working so wanted to start from scratch. I have been reading the wiki but find the different setups conflicting.
*** EDIT ***
One other thing i would like to do but don’t think is possible is to have a shared cache for web traffic but depending on the source of the original request a different wan connection would be used to get the data if it is not in the cache. based on the rules above.
Hopefully someone can help me get started.
Chris