You need to use mangle rules in firewall to mark the incoming packets from the gateway
interface and then using route marking route them back out the way they came.
Best regards,
Hugh Golding
H 07841 749345
0 hugh(a)teqsys.net
-----Original Message-----
From: 44Net [mailto:44net-bounces+notifications=teqsys.net@hamradio.ucsd.edu] On Behalf Of
Rob Janssen
Sent: 26 September 2016 18:29
To: 44net(a)hamradio.ucsd.edu
Subject: Re: [44net] Fwd: MicroTik and Dumb Questions
(Please trim inclusions from previous messages)
_______________________________________________
Rob,
I thought the script took care of routing. So I would
have to create new routes for 44net to go to the IPIP tunnel?
It should not be required for 44net, but only for internet. I.e. for communication
between your 44net hosts and systems on internet outside 44net. That traffic has to be
forced through the IPIP tunnel to UCSD (169.228.66.251) instead of directly to your ISP,
which will drop it.
This can be achieved by creating the 44net routes in a different routing table, I'll
wait to see if Marius joins the discussion to find how this is best achieved when using
his script. I am not using IPIP myself on my MikroTik,
I have a VPN to another system and use BGP. There I have configured the BGP to put the
routes in a separate
routing table named amprnet and configured some IP Route Rules so that this table is used
for amprnet traffic only.
Rob
_________________________________________
44Net mailing list
44Net(a)hamradio.ucsd.edu
http://hamradio.ucsd.edu/mailman/listinfo/44net