Dual WAN - outgoing connections vs incoming connections

cdiedrich · June 11, 2014, 3:25pm

Dear all,

in the near future, I’ll be facing my first dual-WAN scenario and have one specific question about this.

The situation:
We have two (fast & reliable) ISPs.
One of our remote offices has two (slow and unreliable) ISPs (due to poor and old infrastucture in the northeast of London)
We want to improve our interconnection and probably benefit from MPPP to gain a little more bandwidth.
I’ll place a RB in each office, running a SSTP server and client.
The idea is to connect through each ISP with both remote ends. Like this:

Now I don’t have a problem with routing the outgoing SSTP connections to the correct WAN port - BUT:
How about the incoming connections?

For example the connection from 3.4.5.6 to 2.3.4.5
In our office I’d add a route to 3.4.5.6 via 1.2.3.4 as the outgoing SSTP connection should use this ISP.
Now 3.4.5.6 connects to 2.3.4.5 - will this route interfer with the established connection?
Or should I go for mangle rules for out-interface and connection-state=new for the outgoing connections?

I don’t need a step-by-step guide, just some thoughts and directions.

Thanks,
-Chris

tomaskir · June 11, 2014, 3:34pm

Watch this presentation:
http://tiktube.com/video/DofH3iFnjDJomGEoIDFqnrquKlEoLqHq=

It should explain the mangling needed to keep inbound connections working as they should.

You can ignore the part of the presentation that talks about outbound balancing.

cdiedrich · June 12, 2014, 5:57am

Thanks!

That is exactly what I was looking for. Now I feel more than confident to do it.

-Chris

Cliff · June 16, 2014, 12:32am

You can do it without mangle.

/ip route
add distance=1 gateway=gateway-for-2.3.4.5 routing-mark=ISP2
/ip route rule
add src-address=2.3.4.5/32 table=ISP2

tomaskir · June 16, 2014, 7:57am

What you are describing is policy routing a single IP over ISP2 for inbound and outboud.

This is not what the OP asked for.