I'm having 2 WAN, load balancing PCC and it's work well. WAN1 is using PPPoE and WAN2 is using static IP.
Now i have one PPTP VPN in my office and i want to load balancing between WAN1 and PPTP VPN.
But VPN need to go through WAN2.
When i connect to VPN, it's connected but traffic not go through VPN.
I don't know how to force VPN using only WAN2.
I need some help. Sorry for my bad English.
-
-
phineasmax
just joined
- Posts: 17
- Joined:
Re: Help with Load Balancing and PPTP Client.
This is diagram. it's maybe help you understand my situation
Re: Help with Load Balancing and PPTP Client.
Hi, as i remember correctly PPTP initial communication goes thru port 1723, so maybe mangle and route packages of that port to your WAN2 are possible solution.
Regards
Marcus
Regards
Marcus
-
-
phineasmax
just joined
- Posts: 17
- Joined:
Re: Help with Load Balancing and PPTP Client.
Can you explain more? because i'm newbie in routeros.Hi, as i remember correctly PPTP initial communication goes thru port 1723, so maybe mangle and route packages of that port to your WAN2 are possible solution.
Regards
Marcus
Here are my config:
Code: Select all
/ip cloud
set ddns-enabled=yes
/ip dhcp-server network
add address=192.168.88.0/24 gateway=192.168.88.1
/ip dns
set allow-remote-requests=yes cache-size=5000KiB max-udp-packet-size=512 \
servers=8.8.8.8
/ip firewall filter
add action=passthrough chain=unused-hs-chain comment=\
"place hotspot rules here" disabled=yes
/ip firewall mangle
add action=mark-connection chain=input in-interface=WAN1 new-connection-mark=\
WAN1_conn
add action=mark-connection chain=input in-interface=WAN2 new-connection-mark=\
WAN2_conn
add action=mark-connection chain=input disabled=yes in-interface=pptp-out1 \
new-connection-mark=pptp_conn
add action=mark-routing chain=output connection-mark=WAN1_conn \
new-routing-mark=to_WAN1
add action=mark-routing chain=output connection-mark=WAN2_conn \
new-routing-mark=to_WAN2
add action=mark-routing chain=output connection-mark=pptp_conn disabled=yes \
new-routing-mark=to_pptp
add chain=prerouting dst-address=192.168.0.0/24 in-interface=Local
add action=mark-connection chain=prerouting dst-address-type=!local \
in-interface=Local new-connection-mark=WAN1_conn \
per-connection-classifier=both-addresses-and-ports:3/0
add action=mark-connection chain=prerouting dst-address-type=!local \
in-interface=Local new-connection-mark=WAN2_conn \
per-connection-classifier=both-addresses-and-ports:3/1
add action=mark-connection chain=prerouting dst-address-type=!local \
in-interface=Local new-connection-mark=WAN2_conn \
per-connection-classifier=both-addresses-and-ports:4/0
add action=mark-connection chain=prerouting dst-address-type=!local \
in-interface=Local new-connection-mark=WAN2_conn \
per-connection-classifier=both-addresses-and-ports:4/1
add action=mark-connection chain=prerouting dst-address-type=!local \
in-interface=Local new-connection-mark=WAN1_conn \
per-connection-classifier=both-addresses-and-ports:3/1
add action=mark-routing chain=prerouting connection-mark=WAN1_conn \
in-interface=Local new-routing-mark=to_WAN1
add action=mark-routing chain=prerouting connection-mark=WAN2_conn \
in-interface=Local new-routing-mark=to_WAN2
/ip firewall nat
add action=masquerade chain=srcnat out-interface=WAN1
add action=masquerade chain=srcnat out-interface=WAN2
/ip route
add check-gateway=ping distance=1 gateway=WAN1 routing-mark=to_WAN1
add check-gateway=ping distance=1 gateway=192.168.0.1 routing-mark=to_WAN2
add check-gateway=ping distance=1 gateway=WAN1
add check-gateway=ping distance=2 gateway=192.168.0.1Code: Select all
add add-default-route=yes connect-to=abc.xyz disabled=no mrru=\ 1600 name=pptp-out1 password=vpn user=vpn
add action=mark-connection chain=input in-interface=pptp-out1 \ new-connection-mark=pptp_conn
add action=mark-routing chain=output connection-mark=pptp_conn \new-routing-mark=to_pptp
add action=masquerade chain=srcnat out-interface=pptp-out1
add distance=1 gateway=pptp-out1 routing-mark=to_pptp-
-
phineasmax
just joined
- Posts: 17
- Joined:
