Hi
Thanks for trying to help but when I revert everything back to one wan I get all the access on all the interfaces that I need. So it seems that its something to do with NAT or route problem.
Something I didnt show on earlier posts was that I also have one default route
setup aswell without routing marks.
/ip route add gateway=pppoe-out2
If i remove the mangle rule then I can access the rb the way I want, over vpn and works with the dude. That is what I have been doing to get access when required but I know it should not be like this.
From another post in the forums http://forum.mikrotik.com/t/how-to-add-2-gateways-and-seperate-clients/34184/1 there is something similar for mangle
Code:
/ip firewall mangle add chain=prerouting src-address=198.54.15.0/24 action=mark-routing new-routing-mark=r_178
/ip firewall mangle add chain=prerouting src-address=192.168.10.0/24 action=mark-routing new-routing-mark=r_178
/ip firewall mangle add chain=prerouting src-address=192.168.11.0/24 action=mark-routing new-routing-mark=r_172
/ip firewall mangle add chain=prerouting src-address=192.168.12.0/24 action=mark-routing new-routing-mark=r_172/ip route add gateway=178.242.0.200 routing-mark=r_178
/ip route add gateway=172.16.0.200 routing-mark=r_172
something like that. and if you need routing between those subnets, then you should add one more rule on the top with ‘action=accept’ and dst-address-list=my_local_subnets, then add all your four subnets to that address list
So i thought that was all i was missing, just missing an accept rule but no still does not work.