Community discussions

MikroTik App
 
salvagblo
just joined
Topic Author
Posts: 1
Joined: Fri Oct 15, 2021 10:41 am
Location: Spain

Dual WAN with two movistar connections, problems

Fri Oct 15, 2021 1:21 pm

/interface vlan
add interface="sfp1 - WAN1" name="vlan6 - WAN1" vlan-id=6
add interface="sfp5 - WAN2" name="vlan6 - WAN2" vlan-id=6

/interface pppoe-client
add disabled=no interface="vlan6 - WAN1" max-mru=1492 max-mtu=1492 name=\
pppoe-WAN1 password=adslppp user=adslppp@telefonicanetpa
add disabled=no interface="vlan6 - WAN2" max-mru=1492 max-mtu=1492 name=\
pppoe-WAN2 password=adslppp user=adslppp@telefonicanetpa
/ip pool
add comment="DHCP LAN1" name=dhcp_pool0 ranges=192.168.1.2-192.168.1.254
add comment="DHCP LAN2" name=dhcp_pool2 ranges=192.168.2.2-192.168.2.254

/ip dhcp-server
add address-pool=dhcp_pool0 disabled=no interface=bridge1-LAN1 lease-time=15m Name=dhcp1
add address-pool=dhcp_pool2 disabled=no interface=bridge2-LAN2 lease-time=15m name=dhcp2

/interface bridge port
add bridge=bridge1-LAN1 interface=sfp2
add bridge=bridge1-LAN1 interface=sfp3
add bridge=bridge1-LAN1 interface=sfp4

add bridge=bridge2-LAN2 interface=sfp6
add bridge=bridge2-LAN2 interface=sfp7
add bridge=bridge2-LAN2 interface=sfp8

/ip address
add address=192.168.1.1/24 interface=bridge1-LAN1 network=192.168.1.0
add address=192.168.2.1/24 interface=bridge2-LAN2 network=192.168.2.0

/ip dhcp-server network
add address=192.168.1.0/24 dns-server=8.8.8.8,8.8.4.4 gateway=192.168.1.1
add address=192.168.2.0/24 dns-server=8.8.8.8,8.8.4.4 gateway=192.168.2.1

/ip dns
set servers=8.8.8.8

/ip firewall filter
add action=fasttrack-connection chain=forward comment="Fasttrack" connection-state=established,related
add action=accept chain=input comment="Fasttrack - accept established,related,untracked" connection-state=established,related,untracked
add action=accept chain=forward comment="Fasttrack - accept established,related, untracked" connection-state=established,related,untracked

add action=accept chain=input comment="PING REPLY" protocol=icmp
add action=drop chain=input comment="defconf: drop invalid" connection-state=invalid
add action=drop chain=forward comment="defconf: drop invalid" connection-state=invalid
add action=drop chain=input comment="DROP ALL REST" log-prefix=LOG

/ip firewall mangle
add action=mark-routing chain=prerouting comment="WAN1 INPUT" in-interface=pppoe-WAN1 new-routing-mark="OUT_Wan1" passthrough=no
add action=mark-routing chain=prerouting comment="WAN2 INPUT" in-interface=pppoe-WAN2 new-routing-mark="OUT_Wan2" passthrough=yes

add action=mark-routing chain=prerouting comment="LAN1_to_wan1" new-routing-mark="OUT_Wan1" passthrough=yes src-address=192.168.1.0/24
add action=mark-routing chain=prerouting comment="LAN2_to_wan2" new-routing-mark="OUT_Wan2" passthrough=yes src-address=192.168.2.0/24

/ip firewall nat
add action=masquerade chain=srcnat src-address=192.168.1.0/24
add action=masquerade chain=srcnat src-address=192.168.2.0/24

/ip route
add distance=1 gateway=pppoe-WAN1 routing-mark="OUT_Wan1" comment="WAN1 OUTPUT"
add distance=1 gateway=pppoe-WAN1 routing-mark="OUT_Wan2" comment="WAN2 OUTPUT"

# if this rule is active, the wan2 performance downs to 1 mbit, without works well, but own mikrotik has no output to internet
add comment="ROUTER OUTPUT" disabled=yes distance=2 gateway=pppoe-WAN2

The two movistar connections has same gateway 192.168.144.1, and mikrotik show them between but reachable over the two pppoe-wan outputs.

If pings are working, lan1 and lan2 hasn't access to internet.

Who is online

Users browsing this forum: GoogleOther [Bot], scoobyn8 and 43 guests