MikroTik - Policy Base Routing

 # Adding IP Address on interfaces like lan/wan

# IP for LAN User Network Connectivity

 

/ip address

add address=192.168.2.1/24 disabled=no interface=LAN network=192.168.2.0

# IP for WAN DSL Connectivity

 

add address=192.168.5.1/24 disabled=no interface=WAN1 network=192.168.5.0

add address=192.168.6.1/24 disabled=no interface=WAN2 network=192.168.6.0

 

# Create 2 Address lists and add ip as per required, you can add Range as well.

# I am adding just 2 ips only

 

/ip firewall address-list

add address=192.168.2.6 disabled=no list=DSL1_USERS_LIST

add address=192.168.2.7 disabled=no list=DSL2_USERS_LIST

# Marking Users connection coming from specific address lists

/ip firewall mangle

add action=mark-routing chain=prerouting disabled=no new-routing-mark=wan1_user passthrough=no src-address-list=DSL1_USERS_LIST

add action=mark-routing chain=prerouting disabled=no new-routing-mark=wan2_user passthrough=no src-address-list=DSL2_USERS_LIST

# Create Routes for above marked packets so each marked packets goes via specific wan link only

/ip route

add disabled=no distance=1 dst-address=0.0.0.0/0 gateway=192.168.5.2 routing-mark=wan1_user scope=30 target-scope=10

add disabled=no distance=2 dst-address=0.0.0.0/0 gateway=192.168.6.2 routing-mark=wan2_user scope=30 target-scope=10

# Finally create NAT rule so that users (ip range) internet can work

/ip firewall nat

add action=masquerade chain=srcnat disabled=no src-address=192.168.2.0/24