Hi,
I have the following:
SiteA
RB1200 with the following pppoe connections over DSL from the same provider
wan1 - pppoe1 over ether 5
wan2 - pppoe2 over ether 6
wan3 - pppoe3 over ether 7
lan - ether1
SiteB
x86 mikrotik sitting in a DMZ with 1:1 nat
wan - ether1 (private IP with public address natt’d to it)
lan - ether2
I have created eoip tunnels from site A to site B specifying the local and remote addresses on site A and only the remote addresses on site B. I apply the bonding and i can download with aggregated bandwidth from siteB to siteA however when uploading from siteA it load balances correctly across eoip but only utilises 1 of the pppoe connections for outbound traffic. i believe that even though i am specifying the local address it is not using that pppoe client and simply passing it through pppoe1 marked with the other address. I can confirm this by passing traffic over eoip2 or 3 and seeing pppoe1 being used.
I feel i should be able to force the usage via routes however all 3 of my pppoe connections have the same nexthop. Is there any way i can do this successfully ? any help would be greatly appreciated.
hi
please send your ip address export and ip route export and ip firewall nat export.
/ip address
add address=10.4.8.254/24 comment="LAN bridge" interface=ether1
add address=x.x.x.x/30 comment="bridge to ESX" interface=Bridge-ESX
add address=10.4.0.3/31 comment="Tunnel to QV1" interface=tun1
add address=10.5.0.254/32 comment="LAB 1 Network" interface=LAB1 network=10.5.0.0
add address=10.5.1.254/32 comment="LAB 2 Network" interface=LAB2 network=10.5.1.0
add address=10.5.2.254/32 comment="LAB 3 Network" interface=LAB3 network=10.5.2.0
add address=10.5.3.254/32 comment="LAB 4 Network" interface=LAB4 network=10.5.3.0
add address=192.168.97.69/24 interface=ether4
add address=10.4.0.252/32 interface=lo0 network=10.4.0.252
add address=10.4.0.5/31 interface=tun2
add address=172.16.1.254/24 interface=ether7
add address=10.4.9.254/24 comment=OP-Voice interface=ether2
add address=172.16.2.2/30 interface=bonding1
add address=172.16.13.2/30 interface=eoip-tunnel3
add address=172.16.12.2/30 interface=eoip-tunnel2
add address=172.16.11.2/30 interface=eoip-tunnel1
/ip route
add check-gateway=ping comment="Route marked packets out pppoe1" distance=2 gateway=pppoe1 routing-mark=Route-pppoe1
add check-gateway=arp comment="WAN 3 - Distance 1" distance=1 gateway=pppoe3 routing-mark=wan3
add check-gateway=arp comment="WAN 3 - Distance 2" distance=2 gateway=pppoe1 routing-mark=wan3
add check-gateway=arp comment="WAN 3 - Distance 3" distance=3 gateway=pppoe2 routing-mark=wan3
add check-gateway=arp comment="WAN 2 - Distance 1" distance=1 gateway=pppoe2 routing-mark=wan2
add check-gateway=arp comment="WAN 2 - Distance 2" distance=2 gateway=pppoe3 routing-mark=wan2
add check-gateway=arp comment="WAN 2 - Distance 3" distance=3 gateway=pppoe1 routing-mark=wan2
add check-gateway=arp comment="WAN 1 - Distance 1" distance=1 gateway=pppoe1 routing-mark=wan1
add check-gateway=arp comment="WAN 1 - Distance 2" distance=2 gateway=pppoe2 routing-mark=wan1
add check-gateway=arp comment="WAN 1 - Distance 3" distance=3 gateway=pppoe3 routing-mark=wan1
add check-gateway=arp comment="Static Route - WAN1" distance=1 gateway=pppoe1 routing-mark=static-wan1
add check-gateway=arp comment="Static Route - WAN2" distance=2 gateway=pppoe2 routing-mark=static-wan2
add check-gateway=arp comment="Static Route - WAN3" distance=3 gateway=pppoe3 routing-mark=static-wan3
add distance=1 gateway=pppoe0
add check-gateway=arp comment="Default Route - Distance 1" distance=1 gateway=pppoe1
add check-gateway=arp comment="Default Route - Distance 3" distance=2 gateway=pppoe2
add check-gateway=arp comment="Default Route - Distance 2" distance=3 gateway=pppoe3
add comment="Route To LAB1 Network" distance=1 dst-address=10.1.2.0/24 gateway=ether8
add distance=1 dst-address=10.4.1.0/24 gateway=tun2
add distance=1 dst-address=10.4.2.0/24 gateway=tun2
add distance=1 dst-address=10.4.3.0/24 gateway=tun2
add distance=1 dst-address=10.4.5.0/24 gateway=tun2
add distance=1 dst-address=z.z.z.z/32 gateway=pppoe0
add distance=1 dst-address=z.z.z.z/32 gateway=pppoe1
add comment="Route DC packets out pppoe1" disabled=yes distance=1 dst-address=x.x.x.x/32 gateway=x.x.x.x
add disabled=yes distance=1 dst-address=192.168.69.0/32 gateway=Bridge-ESX pref-src=192.168.69.1
add check-gateway=ping comment="Route Voice out pppoe1" disabled=yes distance=1 dst-address=x.x.x.x/32 gateway=x.x.x.x
/ip firewall nat
add action=masquerade chain=srcnat comment="Masquerade ppp" out-interface=pppoe0
add action=masquerade chain=srcnat comment="Masquerade ppp" out-interface=pppoe1
add action=masquerade chain=srcnat comment="Masquerade ppp" out-interface=pppoe3
add action=masquerade chain=srcnat comment="Masquerade ppp" out-interface=pppoe2
add action=dst-nat chain=dstnat comment="LAB1 - 443" dst-address=x.x.x.x dst-port=443 protocol=tcp to-addresses=10.1.2.253 to-ports=443
add action=dst-nat chain=dstnat comment="LAB1 - 902" dst-address=x.x.x.x dst-port=902 protocol=tcp to-addresses=10.1.2.253 to-ports=902
add action=dst-nat chain=dstnat comment="LAB2 - 443" dst-address=x.x.x.x dst-port=443 protocol=tcp to-addresses=10.4.8.10 to-ports=443
add action=dst-nat chain=dstnat comment="LAB2 - 902" dst-address=x.x.x.x dst-port=902 protocol=tcp to-addresses=10.4.8.10 to-ports=902
add action=dst-nat chain=dstnat comment="LAB2 - 22" dst-address=x.x.x.x dst-port=22 protocol=tcp to-addresses=10.4.8.10 to-ports=22
add action=dst-nat chain=dstnat comment="LAB2 - 3389" dst-address=x.x.x.x dst-port=3389 protocol=tcp to-addresses=10.4.8.11 to-ports=3389
add action=dst-nat chain=dstnat comment="OP-SRV1 - 3389" dst-address=x.x.x.x dst-port=3389 protocol=tcp to-addresses=10.4.8.1 to-ports=3389
add action=dst-nat chain=dstnat comment="OP-AP1 - Winbox" dst-address=x.x.x.x dst-port=8292 protocol=tcp to-addresses=10.4.8.240 to-ports=8291
x.x.x.x is my siteA addresses
z.z.z.z are IP’s in my siteB but not involved in the eoip scheme
tunnel addresses on the other site are what were used, they are all 172.16.x.1/30