Hello,
i have the following problem: The connection to the parent proxy not go over the VPN PPTP connection in Internet. I think i need a routing mark and a route through vpn-out / PPTP.
so please take a look at my config:
external Squid Proxy: 1.2.3.4
PPTP VPN Connection to: 5.6.7.8 on interface vpn-out
on my mikrotik i have the following proxy settings:
/ip proxy print
enabled: no
src-address: 0.0.0.0
port: 8080
anonymous: no
parent-proxy: 1.2.3.4
parent-proxy-port: 3128
cache-administrator: webmaster
max-cache-size: unlimited
max-cache-object-size: 2048KiB
cache-on-disk: no
max-client-connections: 600
max-server-connections: 600
max-fresh-time: 3d
serialize-connections: no
always-from-cache: no
cache-hit-dscp: 4
cache-drive: system
i have the following routes:
DST-ADDRESS PREF-SRC GATEWAY DISTANCE Mark
0 A S 0.0.0.0/0 vpn-out 1 vpn-mark
1 ADS 0.0.0.0/0 192.168.88.1 2
2 ADC 10.89.64.1/32 10.89.64.57 vpn-out 0
3 ADC 192.168.11.0/24 192.168.11.1 bridge-local 0
4 ADC 192.168.88.0/24 192.168.88.239 ether1-gateway 0
i have the following nat rules:
Flags: X - disabled, I - invalid, D - dynamic
0 X ;;; place hotspot rules here
chain=unused-hs-chain action=passthrough
1 ;;; default configuration
chain=srcnat action=masquerade out-interface=ether1-gateway
2 chain=srcnat action=masquerade out-interface=vpn-out
3 chain=dstnat action=redirect to-ports=8080 protocol=tcp
src-address=192.168.11.0/24 dst-port=80
i have the following mangle rules:
Flags: X - disabled, I - invalid, D - dynamic
0 chain=prerouting action=mark-routing new-routing-mark=vpn-mark
passthrough=yes src-address=192.168.11.0/24
What I need to set in order for the connection to the parent proxy goes through the interface vpn-out?
thank you
best regards