Secondary interface not pingable when first is active

RouterOS General
1

Hi,

I’m not much of an expert on RouterOS but had quite a good system setup. I basically have 2 ISPs. I used the mangle rules in the firewall to mark certain traffic and then in the routes table I would send specially marked traffic out the secondary ISP interface.

Now for some reason when I have the primary interface active I cannot even ping the secondary NIC from an external location.

Anyone have any ideas? Perhaps someone is kind enough to log in and take a look :smiley:

2

Most probably mikrotik answers from the first ISP to your pings. You have to creature rules that when a new connection enters a wan interface, it will use the same interface to reply. This works for me for multiple wan interfaces as far as accessing mikrotik from all interfaces.

/ip firewall mangle
add action=mark-connection chain=input comment=\
    "New connections from Wan Interfaces" disabled=no in-interface=\
    ether2-pppoe new-connection-mark="New Incoming Eth2" passthrough=yes
add action=mark-connection chain=input comment="" disabled=no in-interface=\
    ether3-pppoe new-connection-mark="New Incoming Eth3" passthrough=yes
add action=mark-routing chain=output comment=\
    "New Connections to Wan Interfaces" connection-mark="New Incoming Eth2" \
    disabled=no new-routing-mark="New Outgoing Eth2" passthrough=no
add action=mark-routing chain=output comment="" connection-mark=\
    "New Incoming Eth3" disabled=no new-routing-mark="New Outgoing Eth3" \
    passthrough=no

/ip route
add check-gateway=ping comment="" disabled=no distance=1 dst-address=\
    0.0.0.0/0 gateway=ether2-pppoe routing-mark="New Outgoing Eth2" scope=30 \
    target-scope=10
add check-gateway=ping comment="" disabled=no distance=1 dst-address=\
    0.0.0.0/0 gateway=ether3-pppoe routing-mark="New Outgoing Eth3" scope=30 \
    target-scope=10
3

Thank you very much for your suggestion however it does not seem to work :frowning:

Its funny in that it was working perfectly fine but now all of sudden it doesn’t seem to work, I have checked all the obvious things but I haven’t changed anything.

are you avaliable on gtalk at all?

4

No, i do not use it. I would be happy to answer here if I know. I warn you though, my knowledge on mikrotik (and networks in general) is extremely limited