Dual WAN 2xWAN + IP Failover - Dynamic IP problem

ThrasH · August 15, 2012, 8:09am

Hi,

I test in my “laboratory” (RB951 + RB751 both v5.19) Dual WAN 2xWAN + IP Failover

RB951 (gives two ISP lines WAN1 and WAN2)

RB751:
WAN1 - DSL Dynamic IP (all traffic without WAN2)
WAN2 - DSL DYnamic IP (voip, rdp)
LAN

ip failover (no script)

with static IP everything is working great (only I have problem with ftp all trafic should go via WAN2 but when i upload to ftp it goes with WAN1 whe I download form FTP it goes via WAN2.. strange)

RB751:

/ip address
add address=192.168.0.1/24 disabled=no interface=LAN network=192.168.0.0
add address=192.168.100.253/24 disabled=no interface=WAN1 network=192.168.100.0
add address=192.168.200.253/24 disabled=no interface=WAN2 network=192.168.200.0

/ip firewall nat
add action=masquerade chain=srcnat disabled=no out-interface=WAN1
add action=masquerade chain=srcnat disabled=no out-interface=WAN2

/ip firewall mangle
add action=mark-routing chain=prerouting disabled=no dst-port=21 in-interface=LAN new-routing-mark=mark_WAN2 passthrough=no protocol=tcp
add action=mark-routing chain=prerouting disabled=no in-interface=LAN layer7-protocol=skypeout new-routing-mark=mark_WAN2 passthrough=no protocol=udp
add action=mark-routing chain=prerouting disabled=no in-interface=LAN layer7-protocol=sip new-routing-mark=mark_WAN2 passthrough=no
add action=mark-routing chain=prerouting disabled=no in-interface=LAN new-routing-mark=mark_WAN1 passthrough=no

/ip route
add check-gateway=ping disabled=no distance=1 dst-address=0.0.0.0/0 gateway=8.8.4.4 routing-mark=mark_WAN2 scope=30 target-scope=10
add check-gateway=ping disabled=no distance=2 dst-address=0.0.0.0/0 gateway=8.8.8.8 routing-mark=mark_WAN2 scope=30 target-scope=10
add check-gateway=ping disabled=no distance=1 dst-address=0.0.0.0/0 gateway=8.8.8.8 routing-mark=mark_WAN1 scope=30 target-scope=10
add check-gateway=ping disabled=no distance=2 dst-address=0.0.0.0/0 gateway=8.8.4.4 routing-mark=mark_WAN1 scope=30 target-scope=10
add disabled=no distance=1 dst-address=8.8.4.4/32 gateway=192.168.200.1 scope=10 target-scope=10
add disabled=no distance=1 dst-address=8.8.8.8/32 gateway=192.168.100.1 scope=10 target-scope=10

/ip route rule
add action=lookup disabled=no interface=WAN1 routing-mark=mark_WAN1 src-address=192.168.0.0/24 table=mark_WAN1
add action=lookup disabled=no interface=WAN2 routing-mark=mark_WAN2 src-address=192.168.0.0/24 table=mark_WAN2

as I wrote, with static IP there is no problem but client have DSL lines with dynamic IP, when I try to change to DHCP client on WAN1 and WAN2 it’s not working.

I change:

add disabled=no distance=1 dst-address=8.8.4.4/32 gateway=192.168.200.1 scope=10 target-scope=10

to

add disabled=no distance=1 dst-address=8.8.4.4/32 gateway=WAN2 scope=10 target-scope=10

etc..

but it’s still not working, no internet, pings are not going, I try to disable, and enable default routes in DHCP Clients on WANs but still no luck.

Can you help me with this? Thank You.

sina · October 25, 2023, 10:11am

Dear
Could you help me solve the problem
-I configured routing rule 2 WAN working normally download but problem upload working only WAN 1. how to do?
I have been successful with the download, but the upload continues to the WAN1 only one.

Can someone help me?

anav · October 25, 2023, 1:08pm

Which version of firmware are you using??

sina · October 27, 2023, 1:14am

I using 6.49.7 and I upgraded to v 7.xx still does not work multi-WAN.

anav · October 27, 2023, 10:09am

/export file=anynameyouwish (minus router serial number and any public WANIP information).

Need to see l latest full config…

sina · November 4, 2023, 1:25am

Dear
Could i add telegram or whatsapp ? i shear you.
-my telegram +85569557272

Thanks

anav · November 4, 2023, 12:09pm

Nope but you could send the config to my email if you dont want to share here…

sina · November 5, 2023, 10:42am

Yes already i send to your email
Thank you so much

anav · November 5, 2023, 1:27pm

Okay so to be clear your situation is complex

you have a primary ISP and a secondary ISP which you want to use as failover.
You have some IP addresses that should only use WAN2 outbound.
You have an FTP server that should only use WAN2

Is this correct??

+++++++++++++++++
Regarding the VOIP and RDP how do you control or assess that?
Do you mean one LANIP should be using WAN2 for RDP ( so we can identify that user to only go out WAN2)??
Or do you mean ALL RDP from any users should go out WAN2 etc…
Same questions with VOIP

Plus is there a specific destination public IP for all your VOIP or RDP traffic???