i tried following one of the guyides
ok so i'm have 2 wan connections and a LAN subnet and a VOIP subnet
trying to have the LAN use WAN1 and failover to WAN2 and have the VOIP use WAN2 and failover to WAN1
I have not been able to get these working properly, i'm sure it's something simple that i'm missing.
here's my routing:
Code: Select all
/ip route
add check-gateway=ping distance=20 comment="lan" gateway=bridge-wan1
add check-gateway=ping distance=10 comment="voip" distance=10 gateway=1.1.1.1 (wan2)
add distance=10 gateway=bridge-wan1 routing-mark=ISP1_Route
add distance=20 gateway=bridge-wan2 routing-mark=ISP1_Route
add distance=10 gateway=bridge-wan2 routing-mark=ISP2_Route
add distance=20 gateway=bridge-wan1 routing-mark=ISP2_Route
/ip firewall address-list
add address=192.168.1.0/24 list=Connected
add address=10.10.1.0/24 list=Connected
add address=192.168.0.0/16 list=subnet_local
add address=10.10.0.0/16 list=subnet_local
add address=172.16.0.0/16 list=subnet_local
add address=192.168.1.0/24 list=subnet_lan
add address=10.10.10.0/24 list=subnet_voip
/ip firewall mangle
add action=mark-connection chain=input comment="Local routing" connection-mark=no-mark dst-address-list=subnet_local log-prefix=ROUTING new-connection-mark=local_routing passthrough=yes \
src-address-list=subnet_local
add action=accept chain=output connection-mark=local_routing log-prefix=ROUTING
add action=mark-connection chain=input comment="ROUTING Rules" connection-mark=no-mark in-interface=bridge-wan1 new-connection-mark=WAN1->ROS passthrough=yes
add action=mark-connection chain=input connection-mark=no-mark in-interface=bridge-wan2 new-connection-mark=WAN2->ROS passthrough=yes
add action=mark-routing chain=output connection-mark=WAN1->ROS new-routing-mark=ISP1_Route
add action=mark-routing chain=output connection-mark=WAN2->ROS new-routing-mark=ISP2_Route
add action=mark-routing chain=prerouting connection-mark=WAN1->LANs new-routing-mark=ISP1_Route src-address-list=subnet_local
add action=mark-routing chain=prerouting connection-mark=WAN2->LANs new-routing-mark=ISP2_Route src-address-list=subnet_local
add action=mark-connection chain=prerouting connection-mark=no-mark dst-address-list=!subnet_local dst-address-type=!local new-connection-mark=LAN->WAN1 passthrough=yes src-address-list=subnet_lan
add action=mark-connection chain=prerouting connection-mark=no-mark dst-address-list=!subnet_local dst-address-type=!local new-connection-mark=LAN->WAN2 passthrough=yes src-address-list=subnet_voip
add action=mark-routing chain=prerouting comment="ISP1 Primary" connection-mark=LAN->WAN1 new-routing-mark=ISP1_Route passthrough=yes src-address-list=subnet_lan
add action=mark-routing chain=prerouting comment="ISP2 Primary" connection-mark=LAN->WAN2 new-routing-mark=ISP2_Route passthrough=yes src-address-list=subnet_voip
add action=mark-connection chain=prerouting connection-mark=LAN->WAN1 new-connection-mark=Sticky_ISP1 passthrough=yes routing-mark=ISP1_Route
add action=mark-connection chain=prerouting connection-mark=LAN->WAN2 new-connection-mark=Sticky_ISP2 passthrough=yes routing-mark=ISP2_Route
add action=mark-routing chain=prerouting connection-mark=Sticky_ISP1 new-routing-mark=ISP1_Route src-address-list=subnet_local
add action=mark-routing chain=prerouting connection-mark=Sticky_ISP2 new-routing-mark=ISP2_Route src-address-list=subnet_local
I also have some connection marking rules for traffic shaping that I need to figure out but this is the most important.
gateway=gatewayIP (of primary ISP)