Categories

JavaScriptPHPHTMLCssPythonWordPressWeb developmentLinuxMySQLAndroidWindowsJavaC++ / C#LayoutReactUbuntuYiiDjangoProgramming1C-BitrixLaravelSystem administrationTelegramJSONDebianPostgreSQLIOSGoogleHtaccessWindows ServerGitMacOSGoogle ChromeCMSWooСommerceBootstrapNginxSQLUnityAPI
Make a leaderReport
1
1
1stCreator2017-09-04 12:01:41
VPN
1stCreator, 2017-09-04 12:01:41

How to set up VPN SSTP or OPNVPN on Mikrotik with configured balancing of 2 providers?

Good afternoon, there is a Mikrotik with configured load balancing and marked traffic, I'm trying to set up an SSTP or OPNVPN vpn server on it, in fact, even a GRE tunnel, the problem is that when marking packets go to one or another provider, please help me tell you how to do it right configure traffic marking so that it comes from the VPN tunnel.
here is the labeled
mangle
setting
: prefix=""
D chain=forward action=change-mss new-mss=1440 passthrough=yes tcp-flags=syn
protocol=tcp in-interface=all-ppp tcp-mss=1441-65535 log=no log-prefix= ""
chain=prerouting action=accept dst-address=111.111.111.0/24
in-interface=eth1_1G log=no log-prefix=""
chain=prerouting action=mark-connection new-connection-mark=to-dgc
passthrough=yes dst -address-list=!Kiev in-interface=pppoe-out_DG
connection-mark=no-mark log=no log-prefix=""
chain=prerouting action=mark-connection new-connection-mark=to-trc
passthrough=yes dst-address-list=!Kiev in-interface=eth8_gw_Triolan
connection-mark=no-mark log=no log-prefix="trc"
chain=prerouting action=mark-connection new-connection-mark=to-dgc
passthrough=yes dst-address-type=!local dst-address-list=!Kiev
in-interface=eth1_1G connection-mark=no-mark
per-connection-classifier=both-addresses:2/0 log=no log-prefix=""
chain=prerouting action=mark-connection new-connection-mark=to-trc
passthrough=yes dst-address-type=!local dst-address-list=!Kiev
in-interface=eth1_1G connection-mark=no-mark
per-connection-classifier=both-addresses:2/1 log=no log-prefix="trc"
chain=prerouting action=mark- routing new-routing-mark=to-dg passthrough=ye>
dst-address-list=!Kiev in-interface=eth1_1G connection-mark=to-dgc log=no
log-prefix=""
chain=prerouting action=mark- routing new-routing-mark=to-tr passthrough=ye>
dst-address-list=!Kiev in-interface=eth1_1G connection-mark=to-trc log=no
log-prefix=""
chain=output action=mark-routing new-routing-mark=to-dg passthrough=yes
connection-mark=to-dgc log=no log-prefix=""
chain=output action=mark-routing new-routing-mark= to-tr passthrough=yes
connection-mark=to-trc log=no log-prefix=""

Reply
Answer the question

Answer the question

In order to leave comments, you need to log in

1 answer(s)
Report
1
1stCreator, 2017-09-13
@1stCreator

reconfigured routing everything earned.

Similar questions
S
Sergey Tishchenko2017-07-22 22:54:04
What are the ways to deplete servers? 6Reply
I
Ivan Sokhin2015-08-23 10:44:40
How to increase the download speed on Steam through Yota? 2Reply
N
Norustem Norustem2015-08-27 12:38:04
How to connect all branches with the head office into a single network? 3Reply
K
KirillMilano2017-08-03 01:02:31
How to put all your traffic through another computer? 1Reply

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question