Selective subnet destination routing to WAN side - possible?

RouterOS Beginner Basics
1

Hi guys, need some help.

Already have my RB450G running basic NAT, but having some trouble configuring it to my needs, even after following the guide (which is quite close to what i’m trying to achieve) - per traffic load balancing.

Config of my network as follows:

Basically as per above diagram:

  1. Samknows box traffic needs to be routed to Eth1 (ISP1 which is on DHCP) - this already works.

Now comes the tricky part:

  1. Basically to have a default route to ISP1, for generally everything.
  2. As and when needed - especially for gaming - to have a defined subnet under firewall/Address Lists - so that the RB450G, once it sees this traffic for this subnet - it routes to ISP2 for better latency and performance.
  3. ISP2 needs to be configured for port forwarding to allow the FTP server to run as well.

Can this be achieved?

Appreciate your assistance on this, been hitting a brick wall ever since i’m trying to do the above.

Thanks!

2

You can use Mangle to set a routing mark on the relevant traffic (set by src address or inbound interface or whatever allows the distinction) and then make a default route entry for ISP2 with that same routing mark.

3

Appreciate some help guys - not sure where i'm doing/going wrong.

Ok been trying...

Let's say I want to route smallnetbuilder's subnet to ISP2

Address list export:

mar/11/2013 00:19:11 by RouterOS 5.21

software id = 9WT6-2LNG

/ip firewall address-list
add address=216.14.113.0/24 disabled=no list=SMALLNET

Mangle export (Samknows box routes without issue):

mar/11/2013 00:22:24 by RouterOS 5.21

software id = 9WT6-2LNG

/ip firewall mangle
add action=mark-routing chain=prerouting comment="Samknows Whitebox"
disabled=no new-routing-mark=SAMKNOWS passthrough=no src-address-list=
SAMKNOWS
add action=mark-routing chain=prerouting comment="Test routing" disabled=no
new-routing-mark=TEST passthrough=no src-address-list=SMALLNET

Routes export:

mar/11/2013 00:23:27 by RouterOS 5.21

software id = 9WT6-2LNG

/ip route
add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=ether1 routing-mark=
SAMKNOWS scope=255 target-scope=10
add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=ether2 routing-mark=
TEST scope=255 target-scope=10


Mangle - I can see the count increasing - but webpage refuses to load - any ideas?

Really would appreciate some help - i'm already baffled as it is.

4

Just hope to clear the air.

Hope someone can help answer this:

For the above setup - I’m supposed to configure the basic setup as:

  1. Load balanced (DHCP client end for eth1 & 2 with no default route setup)
  2. Basic NAT - meaning only Eth1 is THE ONLY default route - whilst ISP2 on eth2 is sitting idle waiting for traffic/routes to be sent to it.

So far i’ve tried:

  1. http://wiki.mikrotik.com/wiki/Per-Traffic_Load_Balancing
  2. http://wiki.mikrotik.com/wiki/NTH_load_balancing_with_masquerade

With 1. - i’m currently having it half-working as I’m able to make it work with the Samknows box and a VOIP box which i’m pointing to ISP1. But doesn’t route other traffic when I want it to the ISP2.

DNS is running in this order:
Google DNS / ISP1 / ISP2

I’m welcome to any other solutions. Been trying and trying but almost all changes/solutions don’t work. Hope someone can really help.