From owner-freebsd-net Fri Apr 6 7:16: 1 2001 Delivered-To: freebsd-net@freebsd.org Received: from web9615.mail.yahoo.com (web9615.mail.yahoo.com [216.136.131.14]) by hub.freebsd.org (Postfix) with SMTP id 1623A37B423 for ; Fri, 6 Apr 2001 07:15:58 -0700 (PDT) (envelope-from virtual_olympus@yahoo.com) Message-ID: <20010406141558.44180.qmail@web9615.mail.yahoo.com> Received: from [216.170.141.2] by web9615.mail.yahoo.com; Fri, 06 Apr 2001 07:15:58 PDT Date: Fri, 6 Apr 2001 07:15:58 -0700 (PDT) From: Benjamin Gavin Subject: Re: Multi-provider load balancing To: freebsd-net@freebsd.org In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org Also, and perhaps I should be more clear: 1. I am load-balancing outbound connections from an internal (non-routable) network. 2. There are hardware solutions that do this. 3. There are Windows based programs that do this. I will look into that probability stuff for ipfw, thus far it looks promising. My only concern is that packets coming back in get redirected to the correct natd process, but I can probably control that by using a slightly modified ruleset. Also, the rest of the internet sees my outgoing connections as generating from two separate endpoints. I'm not trying to provide access to internal web sites, DNS, etc through these connections, so I fail to see how assymetric routing would have anything to do with this. I've also checked with a couple people who are addmittedly more versed in TCP/IP and routing and they seemed to think that it would be possible to set something up as I propose. I understand the purpose of BGP, but I just don't think it applies in my case. This is for a simple home network, and every home network in the world is hardly going to apply for an AS number if this type of thing is going to be widespread (nor can they afford to buy expensive hardware solutions). Thanks again, Ben --- Nick Rogness wrote: > On Thu, 5 Apr 2001, Benjamin Gavin wrote: > > > Hi all, > > I've got a problem. I have two providers (cable modem/DSL) and I > need > > to load-balance the connection between them. I don't want to do BGP, > and > > would prefer something that is marginally easy to maintain. I don't > care > > about balancing based on load, simple round-robin style balancing > would be > > fine. Here's a "picture": > > > > Internal Network (192.168.x.x) > > | > > v > > FreeBSD 4.2-RC firewall > > | | > > V V > > cable DSL > > > > Each external side is currently DHCP, but could be static if > necessary. > > What I need is when a request goes out through the firewall for the > > machine to basically "choose a side". Then once the connection is > > established it could stay on that pipe, or flip back and forth > (whichever > > is easier). > > > > Here's what I've tried: > > > > 1. ipfw + 2xnatd, doesn't seem to work, since ipfw rules can't > randomly > > choose on of two rules (AFAIK) > > Check out the probability stuff in ipfw. There has been a battle > over this for a while. Many people say that you MUST run a > routing daemon (ie BGP) to do this. Don;t know about ipfilter. > > > Nick Rogness > - Keep on Routing in a Free World... > "FreeBSD: The Power to Serve!" > __________________________________________________ Do You Yahoo!? Get email at your own domain with Yahoo! Mail. http://personal.mail.yahoo.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message