Answer the question
In order to leave comments, you need to log in
K
K
Kirill 12021-02-28 20:28:08
Kirill 1, 2021-02-28 20:28:08
How to release users through the second mikrotik provider?
Good afternoon, there is a direct access to the world from Mikrotik in the CHR data center, L2 channels enter the data center, Kerio Connect is deployed nearby, mikrotik is the core of the network.
The task is to pass all users through Mikrotik and release it to the world through Kerio Connect, where there will be traffic filtering, AD authorization, etc., and the servers that are behind mikrotik'om will go to the world through Mikrotik's Internet access build a scheme, how to wrap it all up with rules in mikrotik - tell me pliz.
1 answer(s)
@dtmse
D
Dmitry, 2021-03-01 @dtmse
The simplest option is to use the routing rules set in ip -> route -> rules.
A little more detail:
- in ip -> routes create a second default gateway with a label (i.e. not an empty routing mark)
- in ip -> routes -> rules create rules that, according to a given criterion (in your case, by Src. Address), send traffic to a table with the name of this label (i.e. you need to set Action = lookup, table = label_name)
- you may need to create a SNAT / Masquerade rule in ip -> firewall -> nat towards the second external interface, if you need to release a "gray" subnet to the Internet, as well as allowing rules in ip -> firewall -> filter rules
Similar questions
B
A
O
D
M
Didn't find what you were looking for?
Ask your questionAsk a Question
731 491 924 answers to any question