Hi!
I’d like to get your help in one issue.
I’ve got 2 MTs connected with OpenVPN. I’d like one of them to send all the internet traffic trough the first.
Since update to ROS 4.5 it doesn’t work (worked before update).
Here are my seetings:
ip route print
Flags: X - disabled, A - active, D - dynamic,
C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme,
B - blackhole, U - unreachable, P - prohibit
# DST-ADDRESS PREF-SRC GATEWAY DISTANCE
0 X S 0.0.0.0/0 ovpn-out-srvcal1 1
1 ADS 0.0.0.0/0 88.208.89.225 0
2 ADC 88.208.89.224/27 88.208.89.251 wan1 0
3 S 192.168.64.0/24 ovpn-out-etis-gts 1
4 A S 192.168.64.0/24 ovpn-out-etis-dial 1
5 ADS 192.168.65.0/24 192.168.65.132 0
6 ADC 192.168.65.132/32 192.168.65.130 ovpn-out-etis-dial 0
7 ADC 192.168.190.0/24 192.168.190.1 bridge1 0
8 S 192.168.192.0/24 ovpn-out-srvcal2 1
9 ADS 192.168.197.0/24 192.168.197.240 0
10 ADC 192.168.197.240/32 192.168.197.238 ovpn-out-srvcal1 0
11 A S 192.168.198.0/24 ovpn-out-srvcal1 1
ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=accept src-address=192.168.190.0/24
dst-address=192.168.64.0/24
1 chain=srcnat action=accept src-address=192.168.190.0/24
dst-address=192.168.192.0/24
2 chain=srcnat action=accept src-address=192.168.190.0/24
dst-address=192.168.198.0/24
3 chain=srcnat action=masquerade src-address=192.168.190.0/24
dst-address=0.0.0.0/0
4 chain=srcnat action=masquerade out-interface=ovpn-out-srvcal1
ip firewall nat print
Flags: X - disabled, I - invalid, D - dynamic
0 chain=srcnat action=accept src-address=192.168.198.0/24
dst-address=192.168.64.0/24
1 chain=srcnat action=accept src-address=192.168.198.0/24
dst-address=192.168.190.0/24
2 chain=srcnat action=accept src-address=192.168.198.0/24
dst-address=192.168.192.0/24
3 chain=srcnat action=accept src-address=192.168.198.0/24
dst-address=192.168.200.0/22
4 chain=srcnat action=masquerade src-address=192.168.198.0/24
dst-address=0.0.0.0/0
Thanks for the help !