Hi,
solution summary:
I have a routerboard 750 in a network.
port 1 and 2 have internet connection from 2 different ISP whit public ip, and port 3 local network …
I have used netwatch for failover on access of local users to internet.
Two specific routes for netwatch on 2 different public dns for every internet link.
1 route on every internet link and 1 load route on 2 link GW, that enable/disable on netwatch result.
2 route that replay incoming packets from any internet link to itself, depending on route mark.
incoming connection marked depending on port of router and these connection marks used for route mark.
2 dst-nat for incoming on specific ports of public IP, and 2 src-nat masquerade for local internet.
Problem:
I run a 8.8.8.8 or … ping on a local pc, ok, it has reply, this connection marked on my firewall, if the internet of that mark disconnected from ISP, the mark has not any change until connection close (like close ping window!) so my failover has faild! but in same time if ping another ip failover is ok and pc has internet.
Any idea about how can I fix it? is there a command to force close connection with specific mark on netwatch?
Best regaurds
Tnx
