With Cisco iOS that isn't a big deal. I create one VRF for ADSL ("ip vrf adsl") with a default route to the ADSL modem ("ip route vrf adsl 0.0.0.0 0.0.0.0 10.0.0.138"), another VRF for 3G with another default route, put each of the tunnels in one VRF ("tunnel vrf adsl"), the corresponding interfaces to the modems, too, ("ip vrf forwarding adsl") and up they go. One tunnel via ADSL, one via 3G.
I try to replicate that on RouterOS. It began promising with
Code: Select all
/ip route
add distance=1 gateway=10.0.0.138 routing-mark=ADSL
add distance=1 gateway=192.168.1.1 routing-mark=3G
/ip route rule
add src-address=10.0.0.0/24 table=ADSL
add src-address=192.168.1.0/24 table=3G
/ip route vrf
add interfaces=ADSL route-distinguisher=64515:4 routing-mark=ADSL
add interfaces=3G route-distinguisher=64515:5 routing-mark=3G
Code: Select all
[admin@MikroTik] > ping 1.1.1.1 count=2 src-address=10.0.0.1
SEQ HOST SIZE TTL TIME STATUS
0 1.1.1.1 56 59 8ms
1 1.1.1.1 56 59 7ms
sent=2 received=2 packet-loss=0% min-rtt=7ms avg-rtt=7ms max-rtt=8ms
[admin@MikroTik] > ping 1.1.1.1 count=2 src-address=192.168.1.2
SEQ HOST SIZE TTL TIME STATUS
0 1.1.1.1 56 58 29ms
1 1.1.1.1 56 58 25ms
sent=2 received=2 packet-loss=0% min-rtt=16ms avg-rtt=23ms max-rtt=30ms
But now I struggle, how to put a tunnel (PPtP Client) into a VRF. I tried to mark the packets/connections with incoming-/outgoing-filter in the PPP profiles to put them into the corresponding VRF. But obvoiusly that only plays in the IP filter and not in the mangle table. I read something about connecting the forward chain to some "ppp" chain, but failed to grasp, what I should do.
Please help! How can I put a tunnel into some VRF in RouterOS?
In Cisco terms: how to define the "Outer VRF" / "Front Door VRF" / FVRF of a tunnel? How to translate iOS "tunnel vrf adsl" to RouterOS?
Thank you!