Someone please help my scalp. I have been pulling my hair out for 3 days trying to figure this out on my own. But I give up so I'm here asking for help. I have two DSL modems in bridge mode to a RB750. Before this week I had dual PPPOE wans set up individually working great. I had internet, I could access each modems http interface to check line stats. But silly me I decided I wanted to load balance the two WANS. After three days of poking every corner of Google I got load balancing working great. I'm getting double the speed on multi connection transfers. Everything works great, very happy. Now for the issue. Since I added all the mangle rules and the new routes for the load balancing I can no longer access either modems http config page. I had it working before the load balanceing by setting up a simple srcnat, masquerade to the modem. But now since the load balancing I can't do it anymore. Here is some info about my network

Modem 1 :10.0.1.1
Modem 2 :10.0.2.1
Local :10.0.0.1

Here is some prints...

IP NAT
0 ;;; masq. vpn traffic
chain=srcnat action=masquerade log=no log-prefix=""

1 chain=srcnat action=masquerade src-address=10.0.0.0/24
out-interface=Tek Savvy 1 log=no log-prefix=""

2 chain=srcnat action=masquerade src-address=10.0.0.0/24
out-interface=Tek Savvy 2 log=no log-prefix=""

3 chain=srcnat action=masquerade dst-address=10.0.1.1 out-interface=Modem 1
log=no log-prefix=""

4 chain=srcnat action=masquerade dst-address=10.0.2.1 out-interface=Modem 2
log=no log-prefix=""

Ip Mangle

0 ;;; masq. vpn traffic
chain=srcnat action=masquerade log=no log-prefix=""

1 chain=srcnat action=masquerade src-address=10.0.0.0/24
out-interface=Tek Savvy 1 log=no log-prefix=""

2 chain=srcnat action=masquerade src-address=10.0.0.0/24
out-interface=Tek Savvy 2 log=no log-prefix=""

3 chain=srcnat action=masquerade dst-address=10.0.1.1 out-interface=Modem 1
log=no log-prefix=""

4 chain=srcnat action=masquerade dst-address=10.0.2.1 out-interface=Modem 2
log=no log-prefix=""

ip routes...

DST-ADDRESS PREF-SRC GATEWAY DISTANCE

0 A S 0.0.0.0/0 Tek Savvy 1 1
1 A S 0.0.0.0/0 Tek Savvy 2 1
2 A S 0.0.0.0/0 Tek Savvy 1 1
3 S 0.0.0.0/0 Tek Savvy 2 1
4 DS 0.0.0.0/0 206.248.154.121 1
5 DS 0.0.0.0/0 206.248.154.122 1
6 ADC 10.0.0.0/24 10.0.0.1 Local 0
7 ADC 10.0.1.0/24 10.0.1.2 Modem 1 0
8 ADC 10.0.2.0/24 10.0.2.2 Modem 2 0
9 ADC 206.248.154.121/32 167.88.27.203 Tek Savvy 1 0
10 ADC 206.248.154.122/32 69.196.180.106 Tek Savvy 2 0

ip address'

\

ADDRESS NETWORK INTERFACE

0 ;;; default configuration
10.0.0.1/24 10.0.0.0 Local
1 10.0.2.2/24 10.0.2.0 Modem 2
2 10.0.1.2/24 10.0.1.0 Modem 1
3 D 167.88.27.203/32 206.248.154.121 Tek Savvy 1
4 D 69.196.180.106/32 206.248.154.122 Tek Savvy 2



Someone please help.

Seems to me there are too many source nat masquerade rules.
Do you really need/want to masaquerade everything going through the router which is what rule 0 is doing, as there are no filters on that rule at all.
Do the xDSL modems have a route entry back into your network?

I figured it out. I had the Masquerade rules right but somehow either by my pushing a button I didn’t mean to or the router trying to mess with me. The IP for the two interfaces got deleted. I went in to IP Address and added a static ip for each modem and I got my modem config pages back. This mikrotik router sure can make me pull my hair out but I kind of like the learning experience. I’ve had to play with it so much to get it how I like that it forces my to search and learn how it works. I do love how customizable it is.

Ok, I have a new problem now. Everything is working great so far, one issue. It seems that Wan2 is not accepting any incoming traffic. Wan1 runs my VPN and web server no problem. But when I try to connect to my VPN using WAN2’s ip I get no response. Anyone have any idea what I could be doing wrong?