I got a client where I installed a Mikrotik Hex Lite firmware v6.46.3
The MT connects via a wifi link to the Internet with a static IP (distance1) and with a second redundant connection via PPPoE on a ADSL modem (distance2).
Internet is working 100% either via the wifi link or when I disable the wifi link, via ADSL.
My issue is that I can connect to the Mikrotik from the Internet via the wifi link public IP but I cant get into the Mikrotik via the public IP of the PPPoE connection.
I got no filters rules and no mangle or NAT rules except masquerading. Winbox and www services are allowed.
I can ping the PPPoE IP adress via the Internet but cant connect to either www or winbox via the PPPoE IP UNLESS I disable route 1, thus the Wifi Internet breakout.
I must be able to connect to the MT via Winbox on either Internet breakout IP via Internet.
Thanks, I figured it out thanks to other forum posts.
The mistake I made was to forget that if I tried to access it on the redundant link, the replies are sent via the main link’s gateway. So I can’t receive them.
I had to mark each incoming connection and route them back out via the port they access the MT.
Thus no filters rules or input chains only mangle rules and routing. For anyone else, if it helps, hereby my config.