Hi,
I have just bought my first RB, after reading good reviews about routeros.
I have spent a few days trying to implement my setup idea, without success. Therefore I decided to ask for help...
Please note that I'm not a beginner, but not an expert either.
I have a front modem/router, AVM fritzbox, which was doing all the job until now.
There are a few functions on the fritzbox that I want to keep, which are not that easy to do with RB: parental control, i.e. content filtering, time limiting. For these functions, the AVM router needs to have the ips in its own range.
The RB is needed to do some special processing: traffic shaping/control, bandwidth management, AND routing through vpn (pptp) for a few special cases (workaround for geographic filters - e.g. youtube, p2p...).
The RB is physically it between my switch and the AVM router.
I have used mangle rules to mark the traffic as needed (like here: http://wiki.mikrotik.com/wiki/Policy_Base_Routing).
The test connections are nicely seen in the firewall connections tracker (for testing I used both connection and routing marks).
I tried 2 main ideas:
1. RB in router mode (standard Home AP):
a. using NAT, it hides all traffic behind its IP; the AVM router doesn't filter anything.
b. NOT using NAT (static routes between the 2 networks); the AVM router still doesn't apply filtering for a foreign (RB) network.
In both cases I can route through VPN, but can't use the parental filter of the AVM router for normal traffic.
2. RB in bridge mode (currently the AVM router has DHCP active, but I may switch to RB)
In this way, the AVM router sees and filters the traffic.
I activated IP firewall in bridge mode, connections are properly marked. I could even block traffic from bridging.
What I COULDN'T do, is force route marked traffic go through a VPN connection; the explicit static rule seems to be ignored, traffic is always bridged to the default gateway.
I basically want to decide whether to bridge OR route, depending on marks.
It looks like it's not possible, or I don't know how to do it.
This is where I don't know anymore, so I decided to ask.
I am thankful for any idea / clarification.
Regards,
Gabriel
Re: Mixed bridge / router setup possible?
Hi
Been trying the same thing with no luck.
Bridge mode, routing marked traffic to vpn connection doesn't work.
Is this a limitation or a bug?
Been trying the same thing with no luck.
Bridge mode, routing marked traffic to vpn connection doesn't work.
Is this a limitation or a bug?