Hi all,
Can someone explain this perhaps? I have no idea why MT is doing what it’s doing…
[cknipe@WMEO01-CORE01] > /ip route pr
Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 ADS 0.0.0.0/0 41.x.x.1 1
...
5 ADC 192.168.0.1/32 192.168.0.3 PPTP - ... 0
...
8 A S 196.x.x.0/27 192.168.0.1 1
...
[cknipe@WMEO01-CORE01] > /ip firewall mangle export
# oct/06/2010 08:59:18 by RouterOS 4.11
# software id = xx
#
[cknipe@WMEO01-CORE01] > /ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
...
11 chain=srcnat action=masquerade src-address=198.19.255.0/24 out-interface=PPTP - ...
13 chain=srcnat action=masquerade src-address=198.19.255.0/24 out-interface=DSL - ...
However, the below works as expected:
[root@amnesiac /usr/home/cknipe]# traceroute 196.x.x.29
traceroute to 196.x.x.29 (196.x.x.29), 64 hops max, 40 byte packets
1 srvnet-gw01 (198.19.255.1) 0.175 ms 0.135 ms 0.089 ms
2 192.168.0.1 (192.168.0.1) 346.899 ms 336.507 ms 341.442 ms
...
What I don’t get however…
[root@amnesiac /usr/home/cknipe]# tcptraceroute 196.x.x.29 120
Selected device sge0, address 198.19.255.3, port 17917 for outgoing packets
Tracing the path to 196.x.x.29 on TCP port 120, 30 hops max
1 srvnet-gw01.wmeo01.corp.opticnetworks.net (198.19.255.1) 9.374 ms 9.546 ms 10.167 ms
2 x.dsl.mweb.co.za (41.x.x.1) 10.121 ms 9.613 ms 10.128 ms
...
MT is routing ICMP properly through the PPTP tunnel as per the static route on the routing table, but it is sending TCP as per the default route on the routing table… Yet, there are no mangle rules, no packet / route marks, and no policy routes what so ever…
Why?
Did try the obvious such as rebooting the router, deleting / re-adding the routes, etc… MT 4.11 on a x86
Many thanks,
C