hello is there anybody online now that can let me know if there is a way to run hotspot and dual wan at the same time. i have set it up like it shows in the wiki but when i turn on hotspot i get into trouble. I have more mangle rules and filters setup too. If there is any body that would like to login and see how it is set up and if there is a noticible flaw i would apreciate it.


thanks in advance

you could do that with VRRP or policy-routing, pls see http://wiki.mikrotik.com/wiki/Routing

ok i have it working using the odd/even method and i have proxy working and i have the hotspot/userman up and running. I have my filter enabled and i am seeing that the traffic is going to both wan's. But if I add my other mangle rules and try to do Queue tree it goes to pieces on me.

I changed the way that NAT works tho , i am not doing it like they said to do it. Not sure if that matters but here it is.


0 chain=srcnat out-interface=ether3 connection-mark=odd action=masquerade

1 chain=srcnat out-interface=ether1 connection-mark=even action=masquerade

here is a print out of what my mangle tree looks like. (OTHER is not enabled when i have problems)

#
/ ip firewall mangle
add chain=prerouting in-interface=ether2 src-address-list=odd \
action=mark-connection new-connection-mark=odd passthrough=yes comment="" \
disabled=no
add chain=prerouting in-interface=ether2 src-address-list=odd \
action=mark-routing new-routing-mark=odd passthrough=yes comment="" \
disabled=no
add chain=prerouting in-interface=ether2 src-address-list=even \
action=mark-connection new-connection-mark=even passthrough=yes comment="" \
disabled=no
add chain=prerouting in-interface=ether2 src-address-list=even \
action=mark-routing new-routing-mark=even passthrough=yes comment="" \
disabled=no
add chain=prerouting in-interface=ether2 connection-state=new nth=1,1,0 \
action=mark-connection new-connection-mark=odd passthrough=yes comment="" \
disabled=no
add chain=prerouting in-interface=ether2 connection-mark=odd \
action=add-src-to-address-list address-list=odd address-list-timeout=1d \
comment="" disabled=no
add chain=prerouting in-interface=ether2 connection-mark=odd \
action=mark-routing new-routing-mark=odd passthrough=no comment="" \
disabled=no
add chain=prerouting in-interface=ether2 connection-state=new nth=1,1,1 \
action=mark-connection new-connection-mark=even passthrough=yes comment="" \
disabled=no
add chain=prerouting in-interface=ether2 connection-mark=even \
action=add-src-to-address-list address-list=even address-list-timeout=1d \
comment="" disabled=no
add chain=prerouting in-interface=ether2 connection-mark=even \
action=mark-routing new-routing-mark=even passthrough=no comment="" \
disabled=no
add chain=prerouting in-interface=ether2 connection-state=new nth=1,1,1 \
src-address-list=!odd action=mark-connection new-connection-mark=even \
passthrough=yes comment="" disabled=no
add chain=forward p2p=all-p2p action=mark-connection \
new-connection-mark=p2p_conn passthrough=yes comment="" disabled=no
add chain=forward connection-mark=p2p_conn action=mark-packet \
new-packet-mark=p2p passthrough=yes comment="" disabled=no
add chain=forward protocol=udp src-port=5060 action=mark-connection \
new-connection-mark=voip_conn passthrough=yes comment="" disabled=yes
add chain=forward protocol=udp dst-port=5060-5062 action=mark-connection \
new-connection-mark=voip_conn passthrough=yes comment="" disabled=yes
add chain=forward connection-mark=voip_conn action=mark-packet \
new-packet-mark=voip passthrough=yes comment="" disabled=yes
add chain=forward protocol=tcp src-port=80 action=mark-connection \
new-connection-mark=http_conn passthrough=yes comment="" disabled=yes
add chain=forward protocol=tcp dst-port=80 action=mark-connection \
new-connection-mark=http_conn passthrough=yes comment="" disabled=yes
add chain=output connection-mark=http_conn action=mark-packet \
new-packet-mark=http passthrough=yes comment="" disabled=yes
add chain=forward protocol=tcp dst-port=5050 action=mark-connection \
new-connection-mark=yahoo_conn passthrough=yes comment="" disabled=yes
add chain=forward connection-mark=yahoo_conn action=mark-packet \
new-packet-mark=yahoo passthrough=yes comment="" disabled=yes
add chain=forward connection-mark=!p2p_conn action=mark-packet \
new-packet-mark=other passthrough=yes comment="" disabled=yes
add chain=forward connection-mark=!voip_conn action=mark-packet \
new-packet-mark=other passthrough=yes comment="" disabled=yes
add chain=forward protocol=tcp dst-port=443 action=mark-connection \
new-connection-mark=https_conn passthrough=yes comment="" disabled=yes
add chain=forward connection-mark=https_conn action=mark-packet \
new-packet-mark=https passthrough=yes comment="" disabled=yes
add chain=forward protocol=tcp dst-port=1863 action=mark-connection \
new-connection-mark=msn_conn passthrough=yes comment="" disabled=yes
add chain=forward connection-mark=msn_conn action=mark-packet \
new-packet-mark=msn passthrough=yes comment="" disabled=yes
add chain=forward protocol=tcp dst-port=143 action=mark-connection \
new-connection-mark=pop3_conn passthrough=yes comment="" disabled=yes
add chain=forward connection-mark=pop3_conn action=mark-packet \
new-packet-mark=pop3 passthrough=yes comment="" disabled=yes
add chain=forward protocol=icmp action=mark-connection \
new-connection-mark=ping_conn passthrough=yes comment="" disabled=yes
add chain=forward connection-mark=ping_conn action=mark-packet \
new-packet-mark=ping passthrough=yes comment="" disabled=yes
add chain=forward protocol=udp dst-port=53 action=mark-connection \
new-connection-mark=dns_conn passthrough=yes comment="" disabled=yes
add chain=forward connection-mark=dns_conn action=mark-packet \
new-packet-mark=dns passthrough=yes comment="" disabled=yes