I have a RB1100 6.48.6 with two internet connections -
Connection 1 - Starlink - DHCP - Carrier grade nat - Default route cost 0
Connection 2 - Fixed Wireless Access - PPPOE - Public IPv4 - Default route cost 1
Due to CGN i would like to access my cctv via the public address but when i connect i see the traffic coming in using touch but the return traffic is trying to go via the CGN connection.
My CCTV NVR is on address 10.10.40.254 and i have configured a mangle rule
Code: Select all
/ip firewall mangle
add action=mark-routing chain=prerouting log=yes \
new-routing-mark=FWA_ACCESS passthrough=yes \
src-address=10.10.40.254
Code: Select all
/ip route
add distance=2 gateway=FWA routing-mark=FWA_ACCESS
Remote access is now working but only if torch is running on any interface, soon as it stops so does the remote access.
If i change the route cost around and remove the mangle remote access works fine when the FWA connection is being used as the main.
I can't get any remote winbox access with a mangle rule when the FWA is the secondary connection. But it works when it's the primary.
Any advise would be great.
Thanks