Masquerading and policy routing

Hello,

I have been messing around with this for a day now some success but not exactly what I want.

I have connections from 2 different isp. isp 1 serves me a dynamic IP, isp 2 gives me a /26. Isp 1 is a cable provider, lots of download (6mbit) but very little up 256-384K. Isp 2 is a t-1 provider, 1.5 mbit. What I was attempting to do was to send traffic out to the ineternet to isp 2 and have it return from isp 1. Then I read in the manual that policy routing does not work as expected on NATted interfaces since at the moment the packet is processed it has a source address of 0.0.0.0 …

What I tried to do was masqerade all ip’s to the dynamic address of isp 1 and send the traffic out the interface connected to isp 2 by making it the default route. I was unable to make it work can anyone help?

thanks

Joe

Can you post the relevant configs so we can see how it is setup?

This topic was already discussed on the forum. Try to to do some searching…

Thanks but I have searched and am unable to make it work.

I have tried so many configs not sure what to post.

Load balancing appears to work although some hesitation as Mikrtotik decides the route.

Current config is as follows.

Source NAT 192.168.250.0/24 to Dynamic IP of ISP 1 (currently 64.190.x.x)

Default route of ISP 2 with prefered source of Dynamic address of isp 1 (64.190.x.x)

This does not work unless I add the gateway of isp 1 (64.190.x.1) to the default route but this seems to load balance between the 2 connections.

Also I upgraded Mikrotik to V2.8.23

I have decided to use mangle and 2 routing tables to route different types of traffic to different ISPs.

This seems to work well so far.

I only issue I have is what should my source NAt rule look like if any.

I currenly have source address = 192.168.250.0/24 masquerade to 0.0.0.0/0 . this seems to work but I cannot believe it is optimal.


what should the source nat rule be when policy routing between 2 isp’s???

thanks


Joe