Hello,
I am trying to set up an RB450G in the way below:
Ether1 - Lan - 10.64.132.64/26
Ether2 - WAN1 - 10.64.132.2/30
Ether3 - WAN2 - 10.66.56.250/24
Ether4 - Antenna - 192.168.50.1/24
I have used all the instructions from this turorial http://wiki.mikrotik.com/wiki/Manual:PCC
to make a load balancing for the pc’s behind Lan interface to load balancing on WAN1 and WAN2. This works fine.
Ether4 is connected to another router, which ip(WAN) is 192.168.50.3 and it’s Lan side is on subnet 10.66.106.102/26.
I’ have inserted a static route in both routers:
In mikrotik: dst.adr = 10.66.106.64/26, gateway = 192.168.50.3 (antenna interface)
in the other router: dst. adr = 10.64.132.0/23 gateway = 192.168.50.1
But I cannot reach the network behind antenna interface at all!
When I am on Lan side pc i can ping 192.168.50.1
When trying to traceroute from lan(10.64.132.64/26) to the lan behind the antenna (10.66.106.64/26) i get my first hop to my gateway(lan of mikrotik) BUT my second hop is always one of my 2 wan gateways and not the 192.168.50.1 as the static route says!!!
Can u help waht am I doing wrong?
Conf:
[admin@RB450G-Dimarxeio] /ip route> print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 A S 0.0.0.0/0 10.64.132.1 2
1 A S 0.0.0.0/0 10.66.56.1 2
2 A S 0.0.0.0/0 10.64.132.1 2
3 S 0.0.0.0/0 10.66.56.1 3
4 ADC 10.64.132.0/30 10.64.132.2 Syz-Dimarxeio 0
5 ADC 10.64.132.64/27 10.64.132.65 LAN 0
6 ADC 10.64.132.96/27 10.64.132.97 LAN 0
7 ADC 10.64.132.128/26 10.64.132.129 LAN 0
8 ADC 10.66.56.0/24 10.66.56.250 Syz-KEP 0
9 A S 10.66.106.64/26 192.168.50.3 1
10 ADC 192.168.50.0/27 192.168.50.1 Antennas 0
[admin@RB450G-Dimarxeio] /ip address> print
Flags: X - disabled, I - invalid, D - dynamic
# ADDRESS NETWORK INTERFACE
0 X ;;; default configuration
192.168.88.1/24 192.168.88.0 Syz-Dimarxeio
1 ;;; PC-Dimarxeio
10.64.132.129/26 10.64.132.128 LAN
2 ;;; Printers-Dimarxeio
10.64.132.65/27 10.64.132.64 LAN
3 ;;; Servers
10.64.132.97/27 10.64.132.96 LAN
4 ;;; Syz-Dimarxeio
10.64.132.2/30 10.64.132.0 Syz-Dimarxeio
5 ;;; Syz-KEP
10.66.56.250/24 10.66.56.0 Syz-KEP
6 ;;; ANTENNAS
192.168.50.1/27 192.168.50.0 Antennas
[admin@RB450G-Dimarxeio] /ip firewall nat> print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=masquerade out-interface=Syz-Dimarxeio
1 chain=srcnat action=masquerade to-addresses=0.0.0.0 out-interface=Syz-KEP
These roules are inserted for the traffic balancing to work, I do not know if this is relative!
[admin@RB450G-Dimarxeio] /ip firewall mangle> print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=prerouting action=accept dst-address=10.64.132.0/30 in-interface=LAN
1 chain=prerouting action=accept dst-address=10.66.56.0/24 in-interface=LAN
2 chain=prerouting action=mark-connection new-connection-mark=SD_conn
passthrough=yes in-interface=Syz-Dimarxeio connection-mark=no-mark
3 chain=prerouting action=mark-connection new-connection-mark=KEP_conn
passthrough=yes in-interface=Syz-KEP connection-mark=no-mark
4 chain=prerouting action=mark-connection new-connection-mark=SD_conn
passthrough=yes dst-address-type=!local in-interface=LAN
connection-mark=no-mark per-connection-classifier=both-addresses:2/0
5 chain=prerouting action=mark-connection new-connection-mark=KEP_conn
passthrough=yes dst-address-type=!local in-interface=LAN
connection-mark=no-mark per-connection-classifier=both-addresses:2/1
6 chain=prerouting action=mark-routing new-routing-mark=to_SD
passthrough=yes in-interface=LAN connection-mark=SD_conn
7 chain=prerouting action=mark-routing new-routing-mark=to_KEP
passthrough=yes in-interface=LAN connection-mark=KEP_conn
8 chain=output action=mark-routing new-routing-mark=to_SD passthrough=yes
connection-mark=SD_conn
9 chain=output action=mark-routing new-routing-mark=to_KEP passthrough=yes
connection-mark=KEP_conn