No external access to router after load balancing

aaronhun22 · Fri Nov 15, 2013 2:34 am

So I setup load balancing on my RB751U-2HnD and it works great but I can't get external access to the router to work. I'm sure its replying to request from the wrong interface but I can't see why. From the router itself I can ping out successfully but pinging to the router externally or ssh, winbox, and webmin, are all unsuccessful. Here is what I used to get load balancing setup:

 0   chain=prerouting action=mark-routing new-routing-mark=WAN1 passthrough=no src-address=192.168.0.0/23
     dst-address=!192.168.0.0/23 nth=2,1

 1   chain=prerouting action=mark-routing new-routing-mark=WAN2 passthrough=no src-address=192.168.0.0/23
     dst-address=!192.168.0.0/23

 0 A S  dst-address=0.0.0.0/0 gateway=***.***.***.*** gateway-status=***.***.***.*** reachable via  ether1-gateway check-gateway=ping distance=1 scope=30 target-scope=10 routing-mark=WAN1

 1 A S  dst-address=0.0.0.0/0 gateway=***.***.***.*** gateway-status=***.***.***.*** reachable via  ether5-WAN2 check-gateway=ping distance=1 scope=30 target-scope=10 routing-mark=WAN2

rickfrey · Fri Nov 15, 2013 8:37 am

Is the external address in the range of 192.168.0.0/23? You can create a different subnet which is not being processed or you create an accept rule for the identified traffic above the mangle rules and it should clear up that problem.

aaronhun22 · Sat Nov 16, 2013 2:57 am

Thank you for your reply; it got me to think outside of the box. I found the problem was that the 0.0.0.0/0 was set to only marked routes WAN1 and WAN2 and none for the default main. All started working when I added 2 more 0.0.0.0/0 routes with the default settings.

No external access to router after load balancing

No external access to router after load balancing

Re: No external access to router after load balancing

Re: No external access to router after load balancing

Who is online