Hello everyone.
I have an EdgeRouter Lite and after struggling with this issue for several days, attempting both versions of load balancing, the PBR one and the "native" load-balance, I have decided to call for help from the community.
My setup is Dual WAN in load-balancing mode, eth0 on DHCP and eth2/pppoe0 on pppoe. eth1 is LAN.
OpenVPN server is installed locally, configured properly I'd say.
Now, my main problem is that if I connect from the internet via pppoe0 to my VPN server, the requests reach the router, but the entire protocol communication fails because the responses are sent on both WANs.
This happens when I set static interface routes with both eth0 and pppoe0 having the same distance of 1 and disabling the default route on both eth0 and pppoe0. In this case, the load balance seems to work and if I check with show load-balance status and show load-balance watchdog, both interfaces look ok and active and the pinger script works on both load balance interfaces.
The only way I can make OpenVPN work correctly is if I delete the static interface routes and allow eth0 dhcp to add the default route with a distance of 1 and force the pppoe0 default route. Though in this case the load balance shows odd, as eth0 interface shows as inactive and pinger does not work on it. But the WAN Out packets keep going through this load-balance interface, as the counter increases.
So it seems to work like that, but the setup seems crippled though...
I need to mention that I have added two more load balance groups, each consisting of only one interface, one with eth0 and another one with pppoe0, which I am using to access services that are allowed by the ISPs only for their clients, e.g. one SMTP relay server which is offered by one ISP only for its clients. This ISP is on eth0 and I need to forward all packets for this SMTP relay server on eth0.
Also, Local Out packets show as 0 on all interfaces of all groups except the ISP group with only the pppoe0 interface, which I am assuming routes and records all those outgoing OpenVPN packets, which makes sense I suppose, since the OpenVPN server is local.
I know you are going to ask for configs here, but I can only show you one at the moment, the one that works.