네트워크/Mikrotik

[Mikrotik] 2WAN(Dual WAN) 구성 설정 방법

WYYOON 2024. 5. 8. 11:01
728x90
반응형
SMALL
반응형

미크로틱 Dual WAN 설정 방법입니다.

 

 - interface 구성

WAN : ether1 / ether2

LAN : ether3 / ether4 / ether5 -> Bridge 구성

 

/interface ethernet 
set ether1 name=ether1-WAN1
set ether2 name=ether2-WAN2
set ether3 name=ether3-LAN1
set ether4 name=ether4-LAN2
set ether5 name=ether5-LAN3

/interface bridge 
add name=bridge-LAN 

/interface bridge port
add bridge=bridge-LAN interface=ether3-LAN1
add bridge=bridge-LAN interface=ether4-LAN2
add bridge=bridge-LAN interface=ether5-LAN2

/ip address
add address=192.168.0.1/24 interface=bridge-LAN 

/ip pool
add name=dhcp ranges=192.168.0.2-192.168.0.254  

/ip dhcp-server
add address-pool=dhcp disabled=no interface=bridge-LAN lease-time=3d name=dhcp 

/ip dhcp-server network
add address=192.168.0.0/24 dns-server=168.126.63.1,168.126.63.2 gateway=192.168.0.1 netmask=24

/ip dhcp-client
add add-default-route=yes disabled=no interface=ether1-WAN1 use-peer-dns=no use-peer-ntp=no
add add-default-route=yes disabled=no interface=ether2-WAN2 use-peer-dns=no use-peer-ntp=no 

 

SMALL


/ip firewall nat 
add chain=srcnat out-interface=ether1-WAN1 action=masquerade
add chain=srcnat out-interface=ether2-WAN2 action=masquerade
add chain=srcnat src-address=192.168.0.0/24 dst-address=!192.168.0.1 action=masquerade 

/ip firewall mangle      
add action=mark-connection chain=input in-interface=ether1-WAN1 new-connection-mark=ether1_WAN1_conn
add action=mark-connection chain=input in-interface=ether2-WAN2 new-connection-mark=ether2_WAN2_conn
add action=mark-routing chain=output connection-mark=ether1_WAN1_conn new-routing-mark=to_ether1_WAN1
add action=mark-routing chain=output connection-mark=ether2_WAN2 conn new-routing-mark=to_ether2_WAN2
add action=mark-connection chain=prerouting dst-address-type=!local new-connection-mark=ether1_WAN1_conn per-connection-classifier=src-address:2/0 src-address=192.168.0.0/24
add action=mark-connection chain=prerouting dst-address-type=!local new-connection-mark=ether2_WAN2_conn per-connection-classifier=src-address:2/1 src-address=192.168.0.0/24
add action=mark-routing chain=prerouting connection-mark=ether1_WAN1_conn new-routing-mark=to_ether1_WAN1 src-address=192.168.0.0/24
add action=mark-routing chain=prerouting connection-mark=ether2_WAN2_conn new-routing-mark=to_ether2_WAN2 src-address=192.168.0.0/24

/ip route
add check-gateway=ping distance=1 gateway=x.x.x.x routing-mark=to_ether1_WAN1 scope=255  
add check-gateway=ping distance=1 gateway=x.x.x.x routing-mark=to_ether2_WAN2 scope=255



728x90
반응형
SMALL