我有以下架构:
站点1(微型)
- 静态 WAN IP - 192.168.28.11/28
- 动态连接路由 - 192.168.28.0/28 --> 192.168.28.1 (简称路由1)
- 静态连接路由 - 192.168.28.240/28 --> 192.168.28.1 (路由 2)
站点2(便宜的简单路由器)
- 静态 WAN IP - 192.168.28.253/28
- 门 - 192.168.28.254
如果我开始从 Site1 到 Site2 执行 ping/traceroute,所有数据包都会通过 192.168.28.1 网关(路由 2)传递,但会持续一段时间。此后 - 路由 2 将被忽略,路由器会尝试通过路由 1 发送数据包。如果我禁用路由 2,等待一段时间(5 分钟)并再次启用它 - 通信将通过路由 2 恢复(同样持续一小段时间)。依此类推...
这可能是什么原因?这些是完全不同的子网,应始终优先使用路由 2。
编辑
/ip address export
add address=192.168.1.1/24 interface=ether2 network=192.168.1.0
add address=192.168.28.11/28 interface=ether1-gateway network=192.168.28.0
add address=192.168.2.1/24 interface=ether3 network=192.168.2.0
/ip route export
add distance=1 dst-address=192.168.10.0/24 gateway=ether1-gateway
add distance=1 dst-address=192.168.20.0/24 gateway=192.168.28.1
add distance=1 dst-address=192.168.24.0/24 gateway=192.168.28.1
add distance=1 dst-address=192.168.28.240/28 gateway=192.168.28.1
add distance=1 dst-address=192.168.72.0/24 gateway=192.168.28.1
/route print detail
0 ADS dst-address=0.0.0.0/0 gateway=XXX.XXX.XXX.XXX
gateway-status=XXX.XXX.XXX.XXX reachable via pppoe distance=1
scope=30 target-scope=10
2 ADC dst-address=192.168.1.0/24 pref-src=192.168.1.1 gateway=ether2
gateway-status=ether2 reachable distance=0 scope=10
3 DC dst-address=192.168.2.0/24 pref-src=192.168.2.1 gateway=ether3
gateway-status=ether3 unreachable distance=255 scope=10
5 A S dst-address=192.168.10.0/24 gateway=ether1-gateway
gateway-status=ether1-gateway reachable distance=1 scope=30
target-scope=10
15 A S dst-address=192.168.20.0/24 gateway=192.168.28.1
gateway-status=192.168.28.1 reachable via ether1-gateway distance=1
scope=30 target-scope=10
16 A S dst-address=192.168.24.0/24 gateway=192.168.28.1
gateway-status=192.168.28.1 reachable via ether1-gateway distance=1
scope=30 target-scope=10
17 ADC dst-address=192.168.28.0/28 pref-src=192.168.28.11
gateway=ether1-gateway gateway-status=ether1-gateway reachable
distance=0 scope=10
18 A S dst-address=192.168.28.240/28 gateway=192.168.28.1
gateway-status=192.168.28.1 reachable via ether1-gateway distance=1
scope=30 target-scope=10
23 A S dst-address=192.168.72.0/24 gateway=192.168.28.1
gateway-status=192.168.28.1 reachable via ether1-gateway distance=1
scope=30 target-scope=10
24 ADC dst-address=XXX.XXX.XXX.XXX/32 pref-src=XXX.XXX.XXX.XXX gateway=pppoe
gateway-status=pppoe reachable distance=0 scope=10
路由追踪
在职的
站点 1 --> 站点 2 (http://tinypic.com/view.php?pic=2vkb6u0&s=8)
站点 2 --> 站点 1 (http://tinypic.com/view.php?pic=dclsm&s=8)
不工作
- Site1 --> Site2 (tinypic(.)com/view.php?pic=2cz4whk&s=8)(请删除“。”周围的括号)
当连接中断时,我无法访问 Site2,因此我运行了跟踪路由。
PS. 请原谅我提供图片托管网站和第三个链接,但我没有足够的存储库来附加图片并输入超过 2 个链接。
答案1
经过几天的调试和尝试不同的解决方案后,我认定这是一个由我的 ISP 引起的问题。
无论如何,解决方案是在路由器板上将 ARP 硬定义为 Site2 WAN IP 和 Site1 网关的 mac 地址。即ARP 192.168.28.253 --> mac address of 192.168.28.1。