Morning all.
Not sure what i am doing wrong, but I will explain, and hopefully someone can help.
* RB5007 with a main internet connection. Full routing via Cable modem
* connects over Wireguard (or Zerotier, tried both) to some servers upstream (VPS and Dedicated) that have full BGP feeds (and connected to IXes)
* BGP connection to upstream servers and get the routes down
* LAN port connected to machines and allow routing to the internet over BGP and my own V4/V6 space
Mostly works, but every now and again, something goes wonkey and traffic from the route to the VPS boxes is trying to use my own V4/V6 space, and then Zerotier/Wireguard disconnects and a reboot is the only thing that fixes it...
So, I have static routes to the dedicated IPs, and i have a mangle rule to those dedicated IPs to set a connection mark. Then in NAT, if its that connection mark, i set it to use my public IP from the cable modem... that seems to be hit and miss... I also have a NAT rule for any traffic coming from given internal IPs get SRC Natted with one of my public IPs from my own V4/V6 space...
All in all, things get messy... So, what i am trying to figure out what to do is the following:
* When BGP routes come in, the router directly should not be effected by them, essentially it should still use my cable modem (or backup LTE link... thats a nice to have but not required...)
* one of the ports on the router should have an IP from my V4/V6 space (a /28 or /29) and then anything behind that port can get a full public IP with no NAT or the like...
First, does that make sense? And second, How do i do that? I cant seem to find much on how to do it in 7... Any ideas?
Thanks.