FreeLine 1 Опубликовано: 2010-08-17 06:29:51 Share Опубликовано: 2010-08-17 06:29:51 Всем привет! Ребята, есть два АДСЛ канала, один от Укртелефона, а другой Велтон. На Велтоне статический ИП. Ниже конфигурация сервера. Все как-бы должно работать, но не хочет Когда включен один из провайдеров, все бегает, как только подключаю второй все ложиться Куда копать, уже и сам не знаю... Помогите))))))))))) /ip route> print Flags: X - disabled, A - active, D - dynamic, C - connect, S - static, r - rip, b - bgp, o - ospf, m - mme, B - blackhole, U - unreachable, P - prohibit # DST-ADDRESS PREF-SRC GATEWAY-STATE GATEWAY DISTANCE INTERFACE 0 A S 0.0.0.0/0 unreachable ukrtelecom 1 1 A S 0.0.0.0/0 unreachable ukrtelecom 1 reachable velton velton 2 A S 0.0.0.0/0 reachable velton 1 velton 3 ADC 85.90.212.7/32 85.90.Х.Х 0 velton 4 ADC 192.168.0.0/24 192.168.0.1 0 local > ip address print Flags: X - disabled, I - invalid, D - dynamic # ADDRESS NETWORK BROADCAST INTERFACE 0 192.168.0.1/24 192.168.0.0 192.168.0.255 local 1 D 85.90.Х.Х/32 85.90.212.7 0.0.0.0 velton 2 D 92.113.37.85/32 195.5.5.201 0.0.0.0 ukrtelecom interface print Flags: D - dynamic, X - disabled, R - running, S - slave # NAME TYPE MTU 0 R inet1 ether 1500 1 R inet2 ether 1500 2 R local ether 1500 3 X ukrtelecom pppoe-out 4 R velton pppoe-out 1480 ip firewall nat print Flags: X - disabled, I - invalid, D - dynamic 0 I ;;; ukrtelecom chain=srcnat action=masquerade src-address=192.168.0.0/24 out-interface=ukrtelecom 1 ;;; velton chain=srcnat action=masquerade src-address=192.168.0.0/24 out-interface=velton ip firewall mangle print Flags: X - disabled, I - invalid, D - dynamic 0 I chain=input action=mark-connection new-connection-mark=ukrtelecom passthrough=yes in-interface=ukrtelecom 1 chain=input action=mark-connection new-connection-mark=velton passthrough=yes in-interface=velton 2 chain=output action=mark-routing new-routing-mark=to_ukrtelecom passthrough=yes connection-mark=ukrtelecom 3 chain=output action=mark-routing new-routing-mark=to_velton passthrough=yes connection-mark=velton Ссылка на сообщение Поделиться на других сайтах
Mobil 68 Опубліковано: 2010-08-17 13:01:26 Share Опубліковано: 2010-08-17 13:01:26 Для начала промаркируй пакеты, что бы было видно какой пакет откуда идет. Так же обрати внимание на маршрутизацию, может быть что то совпадает там... Ссылка на сообщение Поделиться на других сайтах
Prime 51 Опубліковано: 2010-08-17 13:08:31 Share Опубліковано: 2010-08-17 13:08:31 в таблице маршрутов чтото не увидел куда заруливать маркированным пакетам, которые промаркировал через mangle Ссылка на сообщение Поделиться на других сайтах
tramX 12 Опубліковано: 2010-08-17 13:50:05 Share Опубліковано: 2010-08-17 13:50:05 http://shop.esstream.com/index.php/mikrotik-routerboard/15-mikrotik-rb750-pppoe.html Ссылка на сообщение Поделиться на других сайтах
FreeLine 1 Опубліковано: 2010-08-17 14:42:30 Автор Share Опубліковано: 2010-08-17 14:42:30 [admin@ISA] > export # aug/17/2010 17:28:09 by RouterOS 3.22 # software id = AK73-PET # /interface ethernet set 0 arp=enabled auto-negotiation=yes cable-settings=default comment="" disable-running-check=yes disabled=no full-duplex=yes mac-address=00:17:9A:BF:EA:22 \ mtu=1500 name=inet1 speed=100Mbps set 1 arp=enabled auto-negotiation=yes cable-settings=default comment="" disable-running-check=yes disabled=no full-duplex=yes mac-address=00:24:01:02:8D:3F \ mtu=1500 name=inet2 speed=100Mbps set 2 arp=enabled auto-negotiation=yes cable-settings=default comment="" disable-running-check=yes disabled=no full-duplex=yes mac-address=00:13:8F:71:20:4E \ mtu=1500 name=local speed=100Mbps /interface wireless security-profiles set default authentication-types="" eap-methods=passthrough group-ciphers="" group-key-update=5m interim-update=0s management-protection=disabled \ management-protection-key="" mode=none name=default radius-eap-accounting=no radius-mac-accounting=no radius-mac-authentication=no radius-mac-caching=\ disabled radius-mac-format=XX:XX:XX:XX:XX:XX radius-mac-mode=as-username static-algo-0=none static-algo-1=none static-algo-2=none static-algo-3=none \ static-key-0="" static-key-1="" static-key-2="" static-key-3="" static-sta-private-algo=none static-sta-private-key="" static-transmit-key=key-0 \ supplicant-identity=MikroTik tls-certificate=none tls-mode=no-certificates unicast-ciphers="" wpa-pre-shared-key="" wpa2-pre-shared-key="" /ip hotspot profile set default dns-name="" hotspot-address=0.0.0.0 html-directory=hotspot http-cookie-lifetime=3d http-proxy=0.0.0.0:0 login-by=cookie,http-chap name=default \ rate-limit="" smtp-server=0.0.0.0 split-user-domain=no use-radius=no /ip hotspot user profile set default idle-timeout=none keepalive-timeout=2m name=default shared-users=1 status-autorefresh=1m transparent-proxy=no /ip ipsec proposal set default auth-algorithms=sha1 disabled=no enc-algorithms=3des lifetime=30m name=default pfs-group=modp1024 /port set 0 baud-rate=9600 data-bits=8 flow-control=hardware name=serial0 parity=none stop-bits=1 set 1 data-bits=8 flow-control=none name=virtual0 parity=none stop-bits=1 /ppp profile set default change-tcp-mss=yes comment="" name=default only-one=default use-compression=default use-encryption=default use-vj-compression=default set default-encryption change-tcp-mss=yes comment="" name=default-encryption only-one=default use-compression=default use-encryption=yes use-vj-compression=\ default /interface pppoe-client add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 comment="" dial-on-demand=no disabled=yes interface=inet2 max-mru=1480 max-mtu=1480 mrru=\ disabled name=ukrtelecom password=********** profile=default service-name="" use-peer-dns=no user=********@dsl.ukrtel.net add ac-name="" add-default-route=no allow=pap,chap,mschap1,mschap2 comment="" dial-on-demand=no disabled=no interface=inet1 max-mru=1480 max-mtu=1480 mrru=\ disabled name=velton password=*********** profile=default service-name="" use-peer-dns=no user=*********** /queue type set default kind=pfifo name=default pfifo-limit=50 set ethernet-default kind=pfifo name=ethernet-default pfifo-limit=50 set wireless-default kind=sfq name=wireless-default sfq-allot=1514 sfq-perturb=5 set synchronous-default kind=red name=synchronous-default red-avg-packet=1000 red-burst=20 red-limit=60 red-max-threshold=50 red-min-threshold=10 set hotspot-default kind=sfq name=hotspot-default sfq-allot=1514 sfq-perturb=5 set default-small kind=pfifo name=default-small pfifo-limit=10 /routing bgp instance set default as=65530 client-to-client-reflection=yes comment="" disabled=no ignore-as-path-len=no name=default out-filter="" redistribute-connected=no \ redistribute-ospf=no redistribute-other-bgp=no redistribute-rip=no redistribute-static=no router-id=0.0.0.0 /routing ospf instance set default comment="" disabled=no distribute-default=never metric-bgp=20 metric-connected=20 metric-default=1 metric-other-ospf=20 metric-rip=20 \ metric-static=20 name=default redistribute-bgp=no redistribute-connected=no redistribute-other-ospf=no redistribute-rip=no redistribute-static=no \ router-id=0.0.0.0 /routing ospf area set backbone area-id=0.0.0.0 disabled=no instance=default name=backbone type=default /routing ospf-v3 instance set default comment="" disabled=no distribute-default=never metric-bgp=20 metric-connected=20 metric-default=1 metric-other-ospf=20 metric-rip=20 \ metric-static=20 name=default redistribute-bgp=no redistribute-connected=no redistribute-other-ospf=no redistribute-rip=no redistribute-static=no \ router-id=0.0.0.0 /routing ospf-v3 area set backbone area-id=0.0.0.0 disabled=no instance=default name=backbone type=default /snmp set contact="" enabled=no engine-boots=0 engine-id="" location="" time-window=15 trap-sink=0.0.0.0 trap-version=1 /snmp community set public address=0.0.0.0/0 authentication-password="" authentication-protocol=MD5 encryption-password="" encryption-protocol=DES name=public read-access=\ yes security=none write-access=no /system logging action set memory memory-lines=100 memory-stop-on-full=no name=memory target=memory set disk disk-file-count=2 disk-file-name=log disk-lines-per-file=100 disk-stop-on-full=no name=disk target=disk set echo name=echo remember=yes target=echo set remote bsd-syslog=no name=remote remote=0.0.0.0:514 src-address=0.0.0.0 syslog-facility=daemon syslog-severity=auto target=remote /user group add name=read policy=local,telnet,ssh,reboot,read,test,winbox,password,web,sniff,!ftp,!write,!policy add name=write policy=local,telnet,ssh,reboot,read,write,test,winbox,password,web,sniff,!ftp,!policy add name=full policy=local,telnet,ssh,ftp,reboot,read,write,policy,test,winbox,password,web,sniff /interface bridge settings set use-ip-firewall=no use-ip-firewall-for-pppoe=no use-ip-firewall-for-vlan=no /interface ethernet mirror set /interface l2tp-server server set authentication=pap,chap,mschap1,mschap2 default-profile=default-encryption enabled=no max-mru=1460 max-mtu=1460 mrru=disabled /interface ovpn-server server set auth=sha1,md5 certificate=none cipher=blowfish128,aes128 default-profile=default enabled=no keepalive-timeout=60 mac-address=FE:AA:EA:7C:58:C0 max-mtu=\ 1500 mode=ip netmask=24 port=1194 require-client-certificate=no /interface pptp-server server set authentication=mschap1,mschap2 default-profile=default-encryption enabled=no keepalive-timeout=30 max-mru=1460 max-mtu=1460 mrru=disabled /interface wireless align set active-mode=yes audio-max=-20 audio-min=-100 audio-monitor=00:00:00:00:00:00 filter-mac=00:00:00:00:00:00 frame-size=300 frames-per-second=25 \ receive-all=no ssid-all=no /interface wireless sniffer set channel-time=200ms file-limit=10 file-name="" memory-limit=10 multiple-channels=no only-headers=no receive-errors=no streaming-enabled=no \ streaming-max-rate=0 streaming-server=0.0.0.0 /interface wireless snooper set channel-time=200ms multiple-channels=yes receive-errors=no /ip accounting set account-local-traffic=no enabled=no threshold=256 /ip accounting web-access set accessible-via-web=no address=0.0.0.0/0 /ip address add address=192.168.0.1/24 broadcast=192.168.0.255 comment="" disabled=no interface=local network=192.168.0.0 /ip dhcp-server config set store-leases-disk=5m /ip dns set allow-remote-requests=yes cache-max-ttl=1w cache-size=2048KiB max-udp-packet-size=512 primary-dns=208.67.222.222 secondary-dns=208.67.220.220 /ip firewall connection tracking set enabled=yes generic-timeout=10m icmp-timeout=10s tcp-close-timeout=10s tcp-close-wait-timeout=10s tcp-established-timeout=1d tcp-fin-wait-timeout=10s \ tcp-last-ack-timeout=10s tcp-syn-received-timeout=5s tcp-syn-sent-timeout=5s tcp-syncookie=no tcp-time-wait-timeout=10s udp-stream-timeout=3m \ udp-timeout=10s /ip firewall mangle add action=mark-connection chain=input comment="" disabled=no in-interface=ukrtelecom new-connection-mark=ukrtelecom passthrough=yes add action=mark-connection chain=input comment="" disabled=no in-interface=velton new-connection-mark=velton passthrough=yes add action=mark-routing chain=output comment="" connection-mark=ukrtelecom disabled=no new-routing-mark=to_ukrtelecom passthrough=yes add action=mark-routing chain=output comment="" connection-mark=velton disabled=no new-routing-mark=to_velton passthrough=yes /ip firewall nat add action=masquerade chain=srcnat comment=ukrtelecom disabled=no out-interface=ukrtelecom src-address=192.168.0.0/24 add action=masquerade chain=srcnat comment=velton disabled=no out-interface=velton src-address=192.168.0.0/24 /ip firewall service-port set ftp disabled=no ports=21 set tftp disabled=no ports=69 set irc disabled=no ports=6667 set h323 disabled=no set sip disabled=no ports=5060,5061 set pptp disabled=no /ip hotspot service-port set ftp disabled=no ports=21 /ip neighbor discovery set inet1 discover=yes set inet2 discover=yes set local discover=yes set ukrtelecom discover=no set velton discover=no /ip proxy set always-from-cache=no cache-administrator=webmaster cache-hit-dscp=4 cache-on-disk=no enabled=no max-cache-size=unlimited max-client-connections=600 \ max-fresh-time=3d max-server-connections=600 parent-proxy=0.0.0.0 parent-proxy-port=0 port=8080 serialize-connections=no src-address=0.0.0.0 /ip route add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=ukrtelecom routing-mark=to_ukrtelecom scope=255 target-scope=10 add comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=velton routing-mark=to_velton scope=255 target-scope=10 add check-gateway=ping comment="" disabled=no distance=1 dst-address=0.0.0.0/0 gateway=velton,ukrtelecom scope=255 target-scope=10 /ip service set telnet address=0.0.0.0/0 disabled=no port=23 set ftp address=0.0.0.0/0 disabled=no port=21 set www address=0.0.0.0/0 disabled=no port=80 set ssh address=0.0.0.0/0 disabled=no port=22 set www-ssl address=0.0.0.0/0 certificate=none disabled=yes port=443 set api address=0.0.0.0/0 disabled=yes port=8728 set winbox address=0.0.0.0/0 disabled=no port=8291 /ip socks set connection-idle-timeout=2m enabled=no max-connections=200 port=1080 /ip traffic-flow set active-flow-timeout=30m cache-entries=4k enabled=no inactive-flow-timeout=15s interfaces=all /ip upnp set allow-disable-external-interface=yes enabled=no show-dummy-rule=yes /ipv6 nd add advertise-dns=no advertise-mac-address=yes disabled=no hop-limit=unspecified interface=all mtu=unspecified ra-delay=3s ra-interval=3m20s-10m ra-lifetime=\ 30m reachable-time=unspecified retransmit-interval=unspecified /ipv6 nd prefix default set autoconfig=yes on-link=yes preferred-lifetime=1w valid-lifetime=4w2d /ppp aaa set accounting=yes interim-update=0s use-radius=no /queue interface set inet1 queue=ethernet-default set inet2 queue=ethernet-default set local queue=ethernet-default set ukrtelecom queue=default set velton queue=default /radius incoming set accept=no port=3799 /routing mme set bidirectional-timeout=2 gateway-class=none gateway-keepalive=1m gateway-selection=no-gateway origination-interval=5s preferred-gateway=0.0.0.0 timeout=1m \ ttl=50 /routing rip set distribute-default=never garbage-timer=2m metric-bgp=1 metric-connected=1 metric-default=1 metric-ospf=1 metric-static=1 redistribute-bgp=no \ redistribute-connected=no redistribute-ospf=no redistribute-static=no timeout-timer=3m update-timer=30s /routing ripng set distribute-default=never garbage-timer=2m metric-bgp=1 metric-connected=1 metric-default=1 metric-ospf=1 metric-static=1 redistribute-bgp=no \ redistribute-connected=no redistribute-ospf=no redistribute-static=no timeout-timer=3m update-timer=30s /store add comment="" disabled=no disk=primary-master name=user-manager1 type=user-manager add comment="" disabled=no disk=primary-master name=web-proxy1 type=web-proxy /system clock manual set dst-delta=+00:00 dst-end="jan/01/1970 00:00:00" dst-start="jan/01/1970 00:00:00" time-zone=+00:00 /system console add disabled=no port=serial0 term=vt102 set [ find vcno=1 ] disabled=no term=linux set [ find vcno=2 ] disabled=no term=linux set [ find vcno=3 ] disabled=no term=linux set [ find vcno=4 ] disabled=no term=linux set [ find vcno=5 ] disabled=no term=linux set [ find vcno=6 ] disabled=no term=linux set [ find vcno=7 ] disabled=no term=linux set [ find vcno=8 ] disabled=no term=linux /system console screen set line-count=25 /system gps set enabled=no set-system-time=yes /system hardware set multi-cpu=yes /system health set state-after-reboot=enabled /system identity set name=ISA /system lcd set contrast=0 enabled=no port=parallel type=24x4 /system lcd page set time disabled=yes display-time=5s set resources disabled=yes display-time=5s set uptime disabled=yes display-time=5s set packets disabled=yes display-time=5s set bits disabled=yes display-time=5s set version disabled=yes display-time=5s set ukrtelecom disabled=yes display-time=5s set velton disabled=yes display-time=5s set inet1 disabled=yes display-time=5s set inet2 disabled=yes display-time=5s set local disabled=yes display-time=5s /system logging add action=memory disabled=no prefix="" topics=info add action=memory disabled=no prefix="" topics=error add action=memory disabled=no prefix="" topics=warning add action=echo disabled=no prefix="" topics=critical /system note set note="" show-at-login=yes /system ntp client set enabled=no mode=unicast primary-ntp=0.0.0.0 secondary-ntp=0.0.0.0 /system ntp server set broadcast=no enabled=no manycast=yes multicast=no /system routerboard bios set /system upgrade mirror set check-interval=1d enabled=no primary-server=0.0.0.0 secondary-server=0.0.0.0 user="" /system watchdog set auto-send-supout=no automatic-supout=yes no-ping-delay=5m watch-address=none watchdog-timer=yes /tool bandwidth-server set allocate-udp-ports-from=2000 authenticate=yes enabled=yes max-sessions=10 /tool e-mail set from=<> password="" server=0.0.0.0:25 username="" /tool graphing set store-every=5min /tool mac-server add disabled=no interface=all /tool mac-server ping set enabled=yes /tool sniffer set file-limit=10 file-name="" filter-address1=0.0.0.0/0:0-65535 filter-address2=0.0.0.0/0:0-65535 filter-protocol=ip-only filter-stream=yes interface=all \ memory-limit=10 only-headers=no streaming-enabled=no streaming-server=0.0.0.0 /tool user-manager customer add comment="" disabled=no login=admin parent=admin password="" paypal-accept-pending=no paypal-allowed=no paypal-secure-response=no permissions=owner \ signup-allowed=no subscriber=admin time-zone=+00:00 /user aaa set accounting=yes default-group=read interim-update=0s use-radius=no /xen global-settings set memory-for-main=unlimited Ссылка на сообщение Поделиться на других сайтах
Рекомендованные сообщения
Создайте аккаунт или войдите в него для комментирования
Вы должны быть пользователем, чтобы оставить комментарий
Создать аккаунт
Зарегистрируйтесь для получения аккаунта. Это просто!
Зарегистрировать аккаунтВхід
Уже зарегистрированы? Войдите здесь.
Войти сейчас