ROS搭建PPTP+L2TP服務器使用多個PPPOE出口

需求：原來有12臺撥號VPS，都是通過MSTSC進行操作換IP地址，現在想使用ROS搭建PPTP和L2TP服務器，在本地PC上使用PPTP L2TP客戶端進行連接切換IP，這樣需要換IP的應用軟件就不需要頻繁在各個地區撥號VPS上進行部署了，共一個PPTP L2TP賬號，下面通過ROS來實現這個功能，通過PPTP L2TP來連接輪詢12個PPPOE出口

--------設置網卡名稱--PPPOE命名爲wan內網命名爲lan-------------
/interface bridge
add name=bridge1-lan
add name=bridge2-wan

/interface vrrp
add interface=bridge2-wan name=vrrp1
add interface=bridge2-wan name=vrrp2 vrid=2
add interface=bridge2-wan name=vrrp3 vrid=3
add interface=bridge2-wan name=vrrp4 vrid=4
add interface=bridge2-wan name=vrrp5 vrid=5
add interface=bridge2-wan name=vrrp6 vrid=6
add interface=bridge2-wan name=vrrp7 vrid=7
add interface=bridge2-wan name=vrrp8 vrid=8
add interface=bridge2-wan name=vrrp9 vrid=9
add interface=bridge2-wan name=vrrp10 vrid=10
add interface=bridge2-wan name=vrrp11 vrid=11
add interface=bridge2-wan name=vrrp12 vrid=12

/interface pppoe-client
add name=pppoe-out1 interface=vrrp1 user=0713666666 password=963852 disabled=no
add name=pppoe-out2 interface=vrrp2 user=0713666666 password=963852 disabled=no
add name=pppoe-out3 interface=vrrp3 user=0713666666 password=963852 disabled=no
add name=pppoe-out4 interface=vrrp4 user=0713666666 password=963852 disabled=no
add name=pppoe-out5 interface=vrrp5 user=0713666666 password=963852 disabled=no
add name=pppoe-out6 interface=vrrp6 user=0713666666 password=963852 disabled=no
add name=pppoe-out7 interface=vrrp7 user=0713666666 password=963852 disabled=no
add name=pppoe-out8 interface=vrrp8 user=0713666666 password=963852 disabled=no
add name=pppoe-out9 interface=vrrp9 user=0713666666 password=963852 disabled=no
add name=pppoe-out10 interface=vrrp10 user=0713666666 password=963852 disabled=no
add name=pppoe-out11 interface=vrrp11 user=0713666666 password=963852 disabled=no
add name=pppoe-out12 interface=vrrp12 user=0713666666 password=963852 disabled=no

/ip address
add address=192.168.64.201/24 interface=bridge1-lan network=192.168.64.0
add address=123.123.1.0 interface=bridge2-wan network=123.123.1.0
add address=123.123.1.1 interface=vrrp1 network=123.123.1.1
add address=123.123.1.2 interface=vrrp2 network=123.123.1.2
add address=123.123.1.3 interface=vrrp3 network=123.123.1.3
add address=123.123.1.4 interface=vrrp4 network=123.123.1.4
add address=123.123.1.5 interface=vrrp5 network=123.123.1.5
add address=123.123.1.6 interface=vrrp6 network=123.123.1.6
add address=123.123.1.7 interface=vrrp7 network=123.123.1.7
add address=123.123.1.8 interface=vrrp8 network=123.123.1.8
add address=123.123.1.9 interface=vrrp9 network=123.123.1.9
add address=123.123.1.10 interface=vrrp10 network=123.123.1.10
add address=123.123.1.11 interface=vrrp11 network=123.123.1.11
add address=123.123.1.12 interface=vrrp12 network=123.123.1.12

/interface bridge port
add bridge=bridge1-lan interface=lan
add bridge=bridge2-wan interface=wan

/ip pool
add name=pptp ranges=172.22.22.1-172.22.22.12

/interface pptp-server server
set enabled=yes
/interface l2tp-server server
set enabled=yes use-ipsec=required ipsec-secret=xxxxx

/ip firewall address-list
add address=192.168.0.0/16 list=lanip
add address=172.16.0.0/16 list=lanip
add address=10.0.0.0/8 list=lanip

/ip firewall mangle
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp1 passthrough=no src-address=172.22.22.1
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp2 passthrough=no src-address=172.22.22.2
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp3 passthrough=no src-address=172.22.22.3
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp4 passthrough=no src-address=172.22.22.4
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp5 passthrough=no src-address=172.22.22.5
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp6 passthrough=no src-address=172.22.22.6
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp7 passthrough=no src-address=172.22.22.7
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp8 passthrough=no src-address=172.22.22.8
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp9 passthrough=no src-address=172.22.22.9
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp10 passthrough=no src-address=172.22.22.10
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp11 passthrough=no src-address=172.22.22.11
add action=mark-routing chain=prerouting dst-address-list=!lanip new-routing-mark=pptp12 passthrough=no src-address=172.22.22.12

/ip firewall nat
add action=masquerade chain=srcnat out-interface=all-ppp
add action=masquerade chain=srcnat out-interface=bridge1-lan

/ip route
add distance=1 gateway=pppoe-out1 routing-mark=pptp1
add distance=1 gateway=pppoe-out2 routing-mark=pptp2
add distance=1 gateway=pppoe-out3 routing-mark=pptp3
add distance=1 gateway=pppoe-out4 routing-mark=pptp4
add distance=1 gateway=pppoe-out5 routing-mark=pptp5
add distance=1 gateway=pppoe-out6 routing-mark=pptp6
add distance=1 gateway=pppoe-out7 routing-mark=pptp7
add distance=1 gateway=pppoe-out8 routing-mark=pptp8
add distance=1 gateway=pppoe-out9 routing-mark=pptp9
add distance=1 gateway=pppoe-out10 routing-mark=pptp10
add distance=1 gateway=pppoe-out11 routing-mark=pptp11
add distance=1 gateway=pppoe-out12 routing-mark=pptp12
add distance=1 dst-address=10.0.0.0/8 gateway=192.168.64.254
add distance=1 dst-address=172.16.0.0/16 gateway=192.168.64.254
add distance=1 dst-address=192.168.0.0/16 gateway=192.168.64.254

/ip service
set telnet disabled=yes
set ftp disabled=yes
set www disabled=yes
set ssh disabled=yes
set api disabled=yes
set winbox port=8081
set api-ssl disabled=yes

/ppp secret
add name=pptp password=pptp profile=default-encryption service=pptp
add name=l2tp password=l2tp profile=default-encryption service=l2tp

-------------------添加外網PPTP L2TP連接進口+DNS+主機名-------------------------------------------
/interface vrrp
add interface=bridge2-wan name=vrrp248 vrid=248
add interface=bridge2-wan name=vrrp249 vrid=249

/interface pppoe-client
add name=userclient-out1 interface=vrrp248 user=0713666666 password=963852 disabled=no add-default-route=yes
add name=userclient-out2 interface=vrrp249 user=0713666666 password=963852 disabled=no add-default-route=yes

/ip address
add address=123.123.1.248 interface=vrrp248 network=123.123.1.248
add address=123.123.1.249 interface=vrrp249 network=123.123.1.249

/ip dns
set allow-remote-requests=yes cache-size=2048 max-udp-packet-size=512 servers=223.5.5.5,223.6.6.6

/system identity
set name="xxxxx"

-----------------添加動態域名 DNSPOD DDNS對應出口----------------------------------------
#PPPoE
:local pppoe "userclient-out1"

#DDNS Token
:local token "xxxxxxx,dddddddd"

#DDNS域名
:local record "dddddd"
:local domain "abcd.com"

#以下不需要修改
:global ipold
:local ipnew [/ip address get [/ip address find interface=$pppoe] address]
:set ipnew [:pick $ipnew 0 ([len $ipnew] -3)]
:if ($ipnew != $ipold) do={
:local url "http://u.myxzy.com/dnspod/\?token=$token&ip=$ipnew&domain=$domain&record=$record"
/tool fetch url=$url mode=http keep-result=no
:set ipold $ipnew
log info "DDNS: Sending UPDATE!"
}

ROS搭建PPTP+L2TP服務器使用多個PPPOE出口

「Pygors跨平臺GUI」1：Pygors跨平臺GUI應用研究

[轉帖]

python列出centos7內存使用前50的進程信息

「Pygors跨平臺GUI」2：安裝MinGW-w64、MSYS2還是WSL2

一鍵自動化博客發佈工具,用過的人都說好(掘金篇)

通義千問 2.5 “客串” ChatGPT4，你分的清嗎？

Garnet：微軟官方基於.NET開源的高性能分佈式緩存存儲數據庫

Flink執行圖

Java響應式編程

評估統計算法在銀行僞造鈔票檢測中的價值

python調用oracle存儲過程，讀取返回的遊標

院士：人一生有兩個階段最能逼出成果，一是拿博士學位，二是評正教授

mac 上編譯 libcurl

DC-9靶機滲透詳解

ROS搭建PPTP+L2TP服務器使用多個PPPOE出口

https://yachay.unat.edu.pe/blog/index.php?comment_area=format_blog&comment_component=blog&comment_co

linux以太網驅動總結