[求助]bridge模式两路WAN跑真实IP并作http80分流应用??
使用bridge模式时如何让www80port使用另一条线呢?WAN1: 61.61.61.0-63 Gateway: 61.61.61.62
WAN2: 62.62.62.0-31 Gateway: 62.62.62.30
ROS
WAN1--------eth1----Bridge1-----eth2---WAN1--(LAN) (61.61.61.0-63)
WAN2--------eth3----+++++++------------单独跑 www80port
请教高手一个技术问题,router主机为叁张网卡ether1,ether2,ether3
使用bridge模式将ether1,ether2作为bridge1,主要用意客户端ip全不用改
再来当用户端上网www80时,可否使用src-nat切换为使用ether3上网呢?
已测试两叁天一直找不到问题点,有作到src-nat切换来源ip,但RouterOS
还是使用bridge1的网卡,传送至WAN1 router造就一直只送syn send讯息,
无法让它当进入RouterOS时,切换使用ether3的ip上网www80port?
:ROS Interface 设置
/ interface ethernet
set ether1 name="ether1" mtu=1500 mac-address=00:48:54:53:C2:B8 arp=enabled \
disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment="" disabled=no
set ether2 name="ether2" mtu=1500 mac-address=00:40:95:0B:47:61 arp=enabled \
disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment="" disabled=no
set ether3 name="ether3" mtu=1500 mac-address=00:40:95:0B:41:38 arp=enabled \
disable-running-check=yes auto-negotiation=yes full-duplex=yes \
cable-settings=default speed=100Mbps comment="" disabled=no
:ROS Interface bridge 设置
/ interface bridge
add name="bridge1" mtu=1500 arp=enabled protocol-mode=none priority=0x8000 \
auto-mac=yes admin-mac=00:00:00:00:67:65 max-message-age=20s \
forward-delay=15s transmit-hold-count=6 ageing-time=5m comment="" \
disabled=no
/ interface bridge port
add interface=ether1 bridge=bridge1 priority=0x80 path-cost=10 edge=auto \
point-to-point=auto external-fdb=auto comment="" disabled=no
add interface=ether2 bridge=bridge1 priority=0x80 path-cost=10 edge=auto \
point-to-point=auto external-fdb=auto comment="" disabled=no
:ROS IP Address 设置
/ ip address
add address=61.61.61.61/26 network=61.61.61.0 broadcast=61.61.61.63 \
interface=bridge1 comment="" disabled=no
add address=62.62.62.29/26 network=62.62.62.0 broadcast=62.62.62.63 \
interface=ether3 comment="" disabled=no
:ROS IP Routes 设置
/ ip route
add dst-address=0.0.0.0/0 gateway=61.61.61.62 scope=255 target-scope=10 \
routing-mark=main comment="" disabled=no
add dst-address=0.0.0.0/0 gateway=62.62.62.30 scope=255 target-scope=10 \
routing-mark=adsl comment="" disabled=no
:ROS IP Firewall NAT 设置
/ ip firewall nat
add chain=srcnat src-address=61.61.61.0/26 routing-mark=adsl action=src-nat \
to-addresses=62.62.62.30 to-ports=0-65535 comment="" disabled=no
:ROS IP Firewall Mangle 设置
/ ip firewall mangle
add chain=prerouting protocol=tcp dst-port=80 action=mark-routing \
new-routing-mark=adsl passthrough=yes comment="" disabled=no
在 ip route mark-routing adsl 也有设置正确了, mark-routing adsl 是设在ether3, 但RouterOS
还是往bridge1送连线端口80, 当然ip nat设置部份也是加入相对应的, bridge1中的网路是正常
只是当是端口80作分流的皆无法连线成功!
PS: mark-routing adsl 线路是有确定可以上网的, 使用ping + src-address测试的!
请教高手不知还有解决方式,谢谢!!
[ 本帖最后由 b128777 于 2007-4-18 20:35 编辑 ] 高手们可不可行也知会一下小弟, 若真无法达到此功能也让小弟死一下心啊!
或者能指点一下可解决的方向呢? 谢谢!!
页:
[1]