The issue I had with fibre is UNLIKE cable when it gets a new IP it doesnt automatically change the route entry like my cable connection does. So I had to find a way to get the available gateway into my routes. I've seen this before, have you tried disabling and enabling the fiber interface? :local...

Yes you may have to play with scopes, something I dont understand either. In any case, you completely understood well what I do which is very basic recursive where the connectivity to the first ISP is checked via two different DNS and if truly not available then the router switches to the second IS...

Add a route in the client for 192.168.11.0/24 with a gateway of 192.168.102.1. Trace route agrees its going through your local gateway. ok I tried that, it didn't work, but there is something else going on, I have the same setup in another router and it works without static routes chris@MacBook-Pro...

funny thing is that I can ping 192.168.102.2 when its connected from devices in the 192.168.11.0/24 network

If you run a trace route to 192.168.11.1 or any of the ip addresses assigned to interfaces in the router, what does that show? traceroute to the routers VPN IP traceroute to 192.168.102.1 (192.168.102.1), 64 hops max, 52 byte packets 1 192.168.102.1 (192.168.102.1) 136.960 ms 72.143 ms 86.224 ms tr...

So is the question how to setup failover for the router with two modems. Actually my question was, when the gateway 10.0.2.1 is down why can I still ping 8.8.8.8 when I have this route add distance=1 dst-address=8.8.8.8/32 gateway=10.0.2.1 I value all your answers but I still don't understand how t...

[deleted]

What i was really asking was, are the two routers sharing a subnet, as I am not conversant on how to best connect two devices as such. Assuming you need to route Layer 3 some users or devices so they can see each other. the two routers use the 192.169.10.0/24 subnet to route traffic between them. e...

Not what I would call a beginner network LOL.
That is some major work you have!! Bravo, I would be running away LOL

thank you!!!

still I'm a web dev, self trained in Mikrotik, hence the beginner thread :)

Are the two main routers physically connected by ethernet? If so how have you decided to connect them??

The routers are connected via ethernet, a wireless 60G ptp link, eth2 ;)

Do you have two routers one for COSMOTE1 and a second router for COSMOTE2/3 Two routers: rec-rtr uses one router with a lte cat6 modem (10.0.2.1) the 192.168.10.2 router serves the important hosts and is located in building one res-rtr uses two routers with lte cat6 modems (10.0.1.1, 10.0.0.1) the ...

I forgot to mention that all my ISP provided IP's are dynamic, two of them aren't even public, noted in the diagram with 'BEHIND NAT'

Is the client device configured to use the vpn as default gateway?

Hello mikeeg02

I believe so, yes

I also pass all traffic thought the VPN

Okay post your latest complete config to compare to the diagram etc...........
/export hide-sensitive file=anynameyouwish

Hello everyone, first of all thank you that you took the time to review my config, I really appreciate it! When you ping a public IP address it will route it if you have set up failover... that is the aim of failover! I thought that this route would restrict the 8.8.8.8 IP add distance=1 dst-address...

Hello, I'm trying to connect to any of the LANs from the l2pt-ipsec VPN connection but I can only connect to the router from the PPP address 192.168.102.1 and to the internet (with pass all traffic through the VPN connection) I tried disabling all my blocking firewall rules but that did not help the...

I can't understand what is happening with the router, I'm trying to setup failover with two WAN connections these are my routes: /ip route add distance=1 gateway=10.0.2.1 add distance=2 gateway=192.168.10.1 add distance=1 dst-address=8.8.4.4/32 gateway=192.168.10.1 add distance=1 dst-address=8.8.8.8...

these are my new mangle rules, is there a more elegant way to mark the packets? Also the clients get double the speed than set in the queue rate, is this because of the PCC? Is there a way around that? thank you /ip firewall mangle add action=accept chain=prerouting comment=PCC dst-address=10.0.0.0/...

update: I was passing all traffic from the PCQ Queues so I added a address list to limit the mangle rules.

I had some progress. Speedtest gives me 40Mbps/10Mbps for each WAN, I will use a little less than that to account for fluctuations in speed, lets say 38/9Mpbs. This is 38*10^6 bits/s download and 9*10^6 bits/s upload. So that means that I have to set max-limit in the Queue Tree to 38.000.000/9.000.0...

I'm having trouble understanding your setup, when your office firewall connects to the vpn in your house, you can't access the service in 192.168.200.1 through the Internet?
what routes do you have in your office firewall? You are not giving much information here.

Hello everyone :) I'm trying to setup Load Balancing with two WAN connections, my WAN connections are LTE and Speedtest shows me a speed of 40Mbps/10Mbps for each WAN. I expect ~80 concurrent internet users, the WANs are supposed to have unlimited data, but I have to find a way to limit traffic so e...

Hello!! this is my first post!! I'm was struggling with a VLAN setup for two days now, I wanted some of the VLANs to have access to Winbox. Internet, DHCP and DNS was working fine but Winbox was not working in any of the VLANs I created, only SSH, I also tried bridge filtering them but that did not ...