Dual WAN done but browsing speed slow, ping to dns missing

RouterOS Beginner Basics
1

I have done Dual wan from
http://wiki.mikrotik.com/wiki/ECMP_load_balancing_with_masquerade

With command -

/ ip address
add address=192.168.0.1/24 network=192.168.0.0 broadcast=192.168.0.255 interface=Local
add address=10.111.0.2/24 network=10.111.0.0 broadcast=10.111.0.255 interface=wlan2
add address=10.112.0.2/24 network=10.112.0.0 broadcast=10.112.0.255 interface=wlan1

/ ip route
add dst-address=0.0.0.0/0 gateway=10.111.0.1,10.112.0.1 check-gateway=ping

/ ip firewall nat
add chain=srcnat out-interface=wlan1 action=masquerade
add chain=srcnat out-interface=wlan2 action=masquerade

/ ip firewall mangle
add chain=input in-interface=wlan1 action=mark-connection new-connection-mark=wlan1_conn
add chain=input in-interface=wlan2 action=mark-connection new-connection-mark=wlan2_conn
add chain=output connection-mark=wlan1_conn action=mark-routing new-routing-mark=to_wla1
add chain=output connection-mark=wlan1_conn action=mark-routing new-routing-mark=to_wla2

/ ip route
add dst-address=0.0.0.0/0 gateway=10.111.0.1 routing-mark=to_wla1
add dst-address=0.0.0.0/0 gateway=10.111.0.2 routing-mark=to_wla2

it’s working. Bur problem is browsing speed become slow .

sometime ping to DNS request timed out, but i can brows.

ping latency to 1st ISP DNS fine (1ms), but second ISP DNS is 300ms.

please help me.

2

Does the latency to the DNS server improve if you disable the first or second ECMP route?

3

I have disabled this one

add dst-address=0.0.0.0/0 gateway=10.111.0.2 routing-mark=to_wla2

but no change.

latency to 2nd dns is high

4

sometime we can not browse any web site though ping to st dns clear. if i have transparent proxy then which public ip count?

5

There is none tu support us. So why we use mikrotik?

6

I see chain=input and chain=output in your mangle rules, but I use either chain=forward or chain=prerouting for marking routes for clients connected to the router.

And since you do not have a default route with no routing-mark…

Only port 80 is redirected for the proxy. The dns request (port 53) and the ping (protocol=icmp) must go through the router (chain=forward). Mark that route or set a default route without a routing mark.

FYI: This is not support. This is a user forum. We help you for karma (if not for ego, then basically free).

Please put all entries in one place. If you scatter them all over your post, like “/ip route” above (two places), then it is hard to see what you did. I see you are rotating the default routes if there is no routing mark, but that also means it could be the ISP for one of those connections. If it it slow about half the time, that is what I would check.