Help with ECMP routing, please ...

Posted: Sun Mar 19, 2006 3:38 pm
by pekr

today I tried following - to use our both ISPs, as we finally are connected to both of them:

My task is - I want J town local 10.0.0.x traffic, to go via ISP1, and all nodes 10.0.5.x, to go via ISP2. I did following:

2 chain=prerouting src-address= action=mark-routing
new-routing-mark=K_local2.4 passthrough=yes

3 chain=prerouting src-address= action=mark-routing
new-routing-mark=AP_10.0.5.x passthrough=yes

two gateways used: gw xxxx routing-mark AP_10.0.5.x gw yyyy routing-mark K_local2.4

0 chain=srcnat out-interface=xxxx action=masquerade

1 chain=srcnat out-interface=yyyy action=masquerade

2 chain=srcnat src-address= dst-address= action=masquerade

3 chain=srcnat src-address= dst-address= action=masquerade

BUT - by doing so, my nat rules 2 and 3 stopped to work - I used them to get from local 10.0.0.xx PC via Winbox to remote and nodes via Winbox ...

The question is - I did mangling plus gw definition according to docs, but I can't see any NAT with docs example. Do I need to still masquarade the traffic on outgoing interfaces, or simply I don't need to if I use mangle?

Well, but mangle is about marking for routing, right? I imo still need to NAT to address of respective outgoing interfaces, no? But why my other NAT rules stopped to work? Maybe such traffic is catched by some previous rules? Dunno, confused :-)