Community discussions

MikroTik App
 
AuZZZie
just joined
Topic Author
Posts: 1
Joined: Sun Sep 18, 2011 6:58 am

RouterOS Source Based Routing

Sun Sep 18, 2011 7:03 am

I'm looking at using some Routerboard.com devices for a project of mine but have some questions on RouterOS functionality. Hoping someone can answer if it can do this?

Goal: I want to have an OpenVPN established connection (RouterOS is acting as a client) and only route certain devices over the VPN connection with everything else out the default route. I don't want to route based on destination as I want ALL traffic from specific IP's to go out the VPN.

1. Can it do source based routing based on IP/subnet?
2. Can RouterOS act as an OpenVPN client?
3. Can source based routing (if supported) work with an ACL/List of IP's or just an entire subnet.

Appreciate any help.
 
fewi
Forum Guru
Forum Guru
Posts: 7734
Joined: Tue Aug 11, 2009 3:19 am

Re: RouterOS Source Based Routing

Sun Sep 18, 2011 7:30 am

1. Yes, you can. One well explained example is PCC: http://wiki.mikrotik.com/wiki/Manual:PCC.
2. Yes, but it's pretty poor at it, to be honest. No UDP, for example. Search the forums for "OpenVPN" to see the common woes. It's very good at PPTP and IPsec, though, if those are options.
3. You can source route based on any packet property you please. IP, subnet, ports, protocol, hell you could source route based on packet size if you wanted to. If a rule in IP firewall mangle (http://wiki.mikrotik.com/wiki/Manual:IP/Firewall/Mangle) can identify the packet from others, it can apply a routing mark to it. If it can apply a routing mark to a packet you can route that packet wherever you want.
Specific answers require specific questions. When in doubt, post the output of "/ip address print detail", "/ip route print detail", "/interface print detail", "/ip firewall export", and an accurate network diagram.
 
yogii
Member Candidate
Member Candidate
Posts: 148
Joined: Wed Jun 16, 2010 5:38 am
Location: Batam, Indonesia

Re: RouterOS Source Based Routing

Sun Sep 18, 2011 3:07 pm

it can apply a routing mark to it. If it can apply a routing mark to a packet you can route that packet wherever you want.
yes but only in IPv4 mangle, in IPv6 mangle i don't see this feature (routing mark). :(
 
User avatar
janisk
MikroTik Support
MikroTik Support
Posts: 6283
Joined: Tue Feb 14, 2006 9:46 am
Location: Riga, Latvia

Re: RouterOS Source Based Routing

Mon Sep 19, 2011 11:31 am

that is planned IPv6 feature still missing from RouterOS.
 
yogii
Member Candidate
Member Candidate
Posts: 148
Joined: Wed Jun 16, 2010 5:38 am
Location: Batam, Indonesia

Re: RouterOS Source Based Routing

Mon Sep 19, 2011 1:27 pm

thank you for response mr. janisk.

hmm why mikrotik not implemented this feature immediately, IPv6 was not support routing mark or mikrotik still working for feature?
 
sigbjornl
just joined
Posts: 9
Joined: Mon Jan 18, 2010 9:32 am

Re: RouterOS Source Based Routing

Tue Sep 24, 2013 12:59 am

that is planned IPv6 feature still missing from RouterOS.
I'm running ver 6.4, however I cannot see this feature implemented yet?

Who is online

Users browsing this forum: hexma, McSee and 140 guests