I have configured the heX router with dual WAN Load balancing and Failover. But i do feel something is wrong in the configuration. Can someone help me find the mistake in the configuration below. Thanks in advance.
Code: Select all
# RouterOS 6.48.3
# model = RB750Gr3
/interface bridge
add name=Bridge-LAN
/interface ethernet
set [ find default-name=ether1 ] comment=WAN name=WAN1-Hathway
set [ find default-name=ether2 ] name=WAN2-ACT
set [ find default-name=ether3 ] comment=LAN
/interface wireless security-profiles
set [ find default=yes ] supplicant-identity=MikroTik
/ip pool
add name=DHCP-Server-LAN ranges=192.168.1.10-192.168.1.30
/ip dhcp-server
add address-pool=DHCP-Server-LAN disabled=no interface=Bridge-LAN name=DHCP-Server-LAN
/interface bridge port
add bridge=Bridge-LAN interface=ether3
add bridge=Bridge-LAN interface=ether4
add bridge=Bridge-LAN interface=ether5
/ip address
add address=192.168.1.1/24 interface=Bridge-LAN network=192.168.1.0
/ip dhcp-client
add add-default-route=no disabled=no interface=WAN1-Hathway use-peer-dns=no
add add-default-route=no disabled=no interface=WAN2-ACT use-peer-dns=no
/ip dhcp-server network
add address=192.168.1.0/24 dns-server=8.8.8.8,9.9.9.9 gateway=192.168.1.1
/ip dns
set allow-remote-requests=yes servers=8.8.8.8,9.9.9.9
/ip firewall mangle
add action=mark-connection chain=input in-interface=WAN1-Hathway new-connection-mark=WAN1_Conn passthrough=yes
add action=mark-connection chain=input in-interface=WAN2-ACT new-connection-mark=WAN2_Conn passthrough=yes
add action=mark-routing chain=output connection-mark=WAN1_Conn new-routing-mark=To_WAN1 passthrough=yes
add action=mark-routing chain=output connection-mark=WAN2_Conn new-routing-mark=To_WAN2 passthrough=yes
add action=accept chain=prerouting dst-address=192.168.10.0/24 in-interface=Bridge-LAN
add action=accept chain=prerouting dst-address=10.227.0.0/16 in-interface=Bridge-LAN
add action=mark-connection chain=prerouting dst-address-type=!local in-interface=Bridge-LAN new-connection-mark=WAN1_Conn passthrough=yes per-connection-classifier=both-addresses-and-ports:2/0
add action=mark-connection chain=prerouting dst-address-type=!local in-interface=Bridge-LAN new-connection-mark=WAN2_Conn passthrough=yes per-connection-classifier=both-addresses-and-ports:2/1
add action=mark-routing chain=prerouting connection-mark=WAN1_Conn in-interface=Bridge-LAN new-routing-mark=To_WAN1 passthrough=yes
add action=mark-routing chain=prerouting connection-mark=WAN2_Conn in-interface=Bridge-LAN new-routing-mark=To_WAN2 passthrough=yes
/ip firewall nat
add action=masquerade chain=srcnat out-interface=WAN1-Hathway
add action=masquerade chain=srcnat out-interface=WAN2-ACT
/ip route
add check-gateway=ping distance=1 gateway=192.168.10.1 routing-mark=To_WAN1
add check-gateway=ping distance=1 gateway=10.227.0.1 routing-mark=To_WAN2
add check-gateway=ping distance=1 gateway=192.168.10.1
add check-gateway=ping distance=1 gateway=10.227.0.1