Hi All.
Sorry for my English.
Now we have Linux and iproute2 + iptables with two ISP
dst-nat like this
iptables -vnL -t nat
Chain PREROUTING (policy ACCEPT 389K packets, 37M bytes)
pkts bytes target prot opt in out source destination
224 14455 DNAT tcp -- * * 0.0.0.0/0 46.x.x.224 multiport dports 1521,7600,7700,7800,10022 to:192.168.0.11
4126 305K DNAT tcp -- * * 0.0.0.0/0 77.x.x.44 multiport dports 1521,7600,7700,7800,10022 to:192.168.0.11
0 0 DNAT udp -- * * 0.0.0.0/0 46.x.x.224 multiport dports 1521,7600,7700,7800 to:192.168.0.11
0 0 DNAT udp -- * * 0.0.0.0/0 77.x.x.44 multiport dports 1521,7600,7700,7800 to:192.168.0.11
in mangle prerouting
iptables -t mangle -vnL
Chain PREROUTING (policy ACCEPT 918 packets, 434K bytes)
pkts bytes target prot opt in out source destination
0 0 MARK all -- local0 * 0.0.0.0/0 0.0.0.0/0 ctorigdst 46.х.х.224 MARK set 0x2
12 797 MARK all -- local0 * 0.0.0.0/0 0.0.0.0/0 ctorigdst 77.х.х2.44 MARK set 0x3
ip rule ls
ip rule
0: from all lookup local
32760: from all fwmark 0x3 lookup proxy_rt
32761: from all fwmark 0x2 lookup ttk_rt
That is, provided answers to DNAT with the same IP on which the packet came.
Could it mikrotik with Level 6?