the thing is, I have a PC with routerOS 3.28
the escenario:
I have a lan network (192.168.5.0/24) which is going out by the ISP1, this one is working perfectly.
I have another network (like a DMZ) 172.16.31.0/30 and I want this network go out to ISP2 on the same RouterOS-PC
the first problem is that i cann’t do ping to the ISP2 public ip address from outside, but if i connect the cable to a windows machine, and configure the settings for this ISP2 i do ping without problem. so, I think I’m doing something wrong.
I dont need balancing I just need two networks… 192.168.5.0/24 >>> ISP1 and 172.16.31.0/30 >>> ISP2, and then I will have ISP2 >> 172.16.31.2 NAT working.
So, why not do this directly in RouterOS?
One simple reason: With policy routing (which bellis mentioned) you always need to enter the gateway IPs, but you never know when your ISP gets in the mood of changing it’s gateways IP and suddenly everything stops working.
To prevent this I would put two routers in front and in RouterOS then reference their LAN-IPs
And now on to policy based routing:
Go into IP > Firewall > Mangle and add a new rule:
Chain: prerouting
Src. address: 172.16.31.0/30
Action: mark routing → dmz-traffic
Then go into IP > Routes and add a new route:
Destination: 0.0.0.0/0
Gateway: 10.255.255.6 (for my example from above)
Routing mark: dmz-traffic
