LoadBalance Lento - Inavegável.

Fala Galera!

Estou com um LB PCC e muito lento numa RB751G-2HnD, já tentei vários tutoriais e nada funciona, navegação muito lenta download não iniciam.

Meu Cenário é
ISP1 na eth1
ISP2 na eth4

Tenho uma rede local na eth2 e duas vlan na mesma. As interfaces locais usadas no LoadBalance esão bridge devido ao wifi e vlans.

As bridges:

Código :

/interface bridgeadd admin-mac=D4:CA:6D:26:40:53 auto-mac=no comment=defconf name=bridge
add name=bridge-vlan10
add name=bridge-vlan50
/interface bridge filter
add action=drop chain=forward disabled=yes in-interface=*8
add action=drop chain=forward disabled=yes out-interface=*8
/interface bridge port
add bridge=bridge comment=defconf interface=ether2-master-prod
add bridge=bridge-vlan10 interface=ether2-vlan10
add bridge=bridge-vlan10 interface=wlan1
add bridge=bridge-vlan50 interface=ether2-vlan50

/ip firewall mangle

Código :

add action=accept chain=prerouting comment="===============================Sem Load Balance https list=================" dst-address-list=loopback dst-port=443 in-interface=bridge protocol=tcp
add action=accept chain=prerouting dst-address-list=loopback dst-port=443 in-interface=bridge-vlan50 protocol=tcp
add action=accept chain=prerouting dst-address-list=loopback dst-port=443 in-interface=bridge-vlan10 protocol=tcp
add action=accept chain=prerouting dst-address=192.168.0.0/24 dst-address-list=loopback in-interface=bridge src-address=192.168.0.0/24
add action=accept chain=prerouting dst-address=10.10.10.0/24 dst-address-list=loopback in-interface=bridge-vlan10 src-address=10.10.10.0/24
add action=accept chain=prerouting dst-address=10.10.50.0/24 dst-address-list=loopback in-interface=bridge-vlan50 src-address=10.10.50.0/24
add action=accept chain=prerouting comment="====================================================================" dst-address=192.168.0.0/24 in-interface=bridge
add action=accept chain=prerouting dst-address=10.10.50.0/24 in-interface=bridge-vlan50
add action=accept chain=prerouting dst-address=10.10.10.0/24 in-interface=bridge-vlan10
add action=accept chain=prerouting dst-address=181.223.152.0/22 in-interface=bridge
add action=accept chain=prerouting dst-address=181.223.152.0/22 in-interface=bridge-vlan50
add action=accept chain=prerouting dst-address=181.223.152.0/22 in-interface=bridge-vlan10
add action=accept chain=prerouting dst-address=179.190.200.0/21 in-interface=bridge
add action=accept chain=prerouting dst-address=179.190.200.0/21 in-interface=bridge-vlan50
add action=accept chain=prerouting dst-address=179.190.200.0/21 in-interface=bridge-vlan10
add action=mark-connection chain=prerouting comment="====================================================================" connection-mark=no-mark in-interface=0ether1-CABO new-connection-mark=\
    CABO_conn passthrough=yes
add action=mark-connection chain=prerouting connection-mark=no-mark in-interface=0ether4-NET new-connection-mark=NET_conn passthrough=yes
add action=jump chain=prerouting comment="====================================================================" connection-mark=no-mark in-interface=bridge jump-target=policy_router
add action=jump chain=prerouting connection-mark=no-mark in-interface=bridge-vlan10 jump-target=policy_router
add action=jump chain=prerouting connection-mark=no-mark in-interface=bridge-vlan50 jump-target=policy_router
add action=mark-routing chain=prerouting comment="====================================================================" connection-mark=CABO_conn in-interface=bridge new-routing-mark=to_CABO \
    passthrough=yes src-address=192.168.0.0/24
add action=mark-routing chain=prerouting connection-mark=CABO_conn in-interface=bridge-vlan10 new-routing-mark=to_CABO passthrough=yes src-address=10.10.10.0/24
add action=mark-routing chain=prerouting connection-mark=CABO_conn in-interface=bridge-vlan50 new-routing-mark=to_CABO passthrough=yes src-address=10.10.50.0/24
add action=mark-routing chain=prerouting connection-mark=NET_conn in-interface=bridge new-routing-mark=to_NET passthrough=yes src-address=192.168.0.0/24
add action=mark-routing chain=prerouting connection-mark=NET_conn in-interface=bridge-vlan50 new-routing-mark=to_NET passthrough=yes src-address=10.10.50.0/24
add action=mark-routing chain=prerouting connection-mark=NET_conn in-interface=bridge-vlan10 new-routing-mark=to_NET passthrough=yes src-address=10.10.10.0/24
add action=mark-routing chain=output comment="====================================================================" connection-mark=CABO_conn new-routing-mark=to_CABO passthrough=yes
add action=mark-routing chain=output connection-mark=NET_conn new-routing-mark=to_NET passthrough=yes
add action=mark-connection chain=policy_router comment="====================================================================" disabled=yes dst-address-type=!local new-connection-mark=CABO_conn \
    passthrough=yes per-connection-classifier=both-addresses:2/0
add action=mark-connection chain=policy_router  dst-address-type=!local new-connection-mark=NET_conn passthrough=yes per-connection-classifier=both-addresses:2/1

/ip route

Código :

add check-gateway=ping distance=1 gateway=179.190.200.1 routing-mark=to_CABO
add check-gateway=ping distance=1 gateway=181.223.152.1 routing-mark=to_NET

Se puderem me ajudar agradeço!

Re: LoadBalance Lento - Inavegável.

Qual a necessidade do uso das vlans ?

192.168.0.0 Rede geral da empresa
10.10.10.0 wifi segragado das demais rede (há aps passando em 5 switchs gerenciáveis)
10.10.50.0 Divisão da empresa que deve ser isolada das demais (fica num switch que esta interligado em outro que recebe do RB).

Re: LoadBalance Lento - Inavegável.

Colega,

Load Balance é um recurso de se apaixonar de primeiro momento mas, também, é um filho! Caso queria uma consultoria de auxilio, me encaminha o seu WhatsApp no privado que entro em contato para darmos uma olhada, a analise é sem custo algum!

Forte abç!

Pessoal,

Fazendo teste aqui vi que o load não ta funcionando nas redes vlan's. tirando as rotas defaults e deixando somente as marcadas o load das vlan não passa nada.

Por exemplo nem piga o 8.8.8.8.

Já a rede não vlan com as mesma regras funciona perfeito. Failover derrubando um link funciona, usando gerenciador de download puxo pelo dois links.

Alguém já fez load onde tem nas redes locais vlan's? que possa da uma ajuda?

Re: LoadBalance Lento - Inavegável.

olha ! mrocha,uma dica de quem usa loadbalance .
caso seus link´s ,não seja dedicado.
faça seu load com no máximo 85% dos seus link´s.
outra coisa use um server dns local.(eu uso aqui um feito no prorio mkauth)
hoje em dia ás operadoras limitam ás conexões.
meu mkauth gerencia e faz server dns tranquilamente.(uso hd ssd,placa de rede giga lan)
faz 8 meses de tranquilidade.