Hello, I have RB5009 and ROS 7.3.1 installed on it. I have a wireguard tunnel established to remote VPS server. The default route is my ISP gateway. From the external BGP I get thousands of ipv4/ipv6 addresses and they are added to the main routing table with wireguard gateway. This all works fine.
However, I want some manually added addresses to be forcely routed either to ISP or to wireguard tunnel regardless the main routing table. To implement this I’ve done the following steps:
- I created 2 additional routing tables (black-list and white-list). White list should go to ISP, black list should go to wireguard tunnel.
- I added 2 routing table entries ::/0 for those routing tables with corresponding gateways.
- In the ipv6 → firewall → address lists section I added few addresses to the black-list/white-list
- In the ipv6 → firewall → mangle I added 2 rules for each list (chain: prerouting, dst address list: , action: mark routing, new routing mark: , passthrough: yes)
But in the traceroute I see that my packets towards addresses from the lists go according to the main routing table, not whilte-list/black-list routing tables. Am I missing something or it’s a ROS bug?