From owner-freebsd-net  Mon Dec  3 21:59: 2 2001
Delivered-To: freebsd-net@freebsd.org
Received: from cody.jharris.com (cody.jharris.com [205.238.128.83])
	by hub.freebsd.org (Postfix) with ESMTP id 4AC8E37B419
	for <freebsd-net@FreeBSD.ORG>; Mon,  3 Dec 2001 21:58:59 -0800 (PST)
Received: from localhost (nick@localhost)
	by cody.jharris.com (8.11.1/8.9.3) with ESMTP id fB45wra69919;
	Mon, 3 Dec 2001 23:58:53 -0600 (CST)
	(envelope-from nick@rogness.net)
Date: Mon, 3 Dec 2001 23:58:52 -0600 (CST)
From: Nick Rogness <nick@rogness.net>
X-Sender: nick@cody.jharris.com
To: "Chutima S." <chutima@onebox.com>
Cc: freebsd-net@FreeBSD.ORG, chutima@infoquest.co.th
Subject: Re: How to manage multiple Inetnet link with FreeBSD box.
In-Reply-To: <20011204053202.NGMF12575.mta04.onebox.com@onebox.com>
Message-ID: <Pine.BSF.4.21.0112032348460.69845-100000@cody.jharris.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

On Mon, 3 Dec 2001, Chutima S. wrote:

> Dear all
> 
> As now I have two Internet link and FreeBSD-3.4 as a Firewall for our
> servers.  (Please see below with sample IP addresses)
> 
> 
>                  ISP1         dialup account to ISP2
>                   |                  |
>                --------           ---------
>               | Router |         | WebRamp |
>               |        |         |         |
>                --------           ---------
>                   |                   |
> -------------------------------------------------------
>        |             (Internet 203.154.98.184/29)
>    ----------
>   | FBSD3.4  |
>   | Firewall |
>    ----------
>        |             (DMZ 203.154.98.0/25)
> -------------------------------------------------------
>       |               |                        |
>       |           ---------               ------------
>       |          | Mail    |             | Web Server |
>       |          | Server  |             |            |
>       |           ---------               ------------
>   ----------
>  | FBSD3.4  |
>  | Proxy    |
>   ----------
>       |
>       |              (Inhouse network 192.168.10.0/24)
> --------------------------------------------------------
> 

> I have a problem when config default route at Firewall to WebRamp.  
> People can not connect to our mail or web servers.

	Assuming you are not doing anything besides what you desribed,
	ISP2 is probably not allowing traffic from your assigned IP space.
	That is, ISP2 is not allowing traffic with a source address
	assigned from ISP1...which all your servers have.

	Another possiblility is that you are being filtered elsewhere.

> 
> How should I do to let them work together?  (gated or routed???)

	It depends if you are trying to achieve redundancy with these 2
	providers. if so, you will need to run BGP.

	And another thing, questions like this should goto
	freebsd-questions@freebsd.org, not this list.

Nick Rogness <nick@rogness.net>
 - Keep on Routing in a Free World...
  "FreeBSD: The Power to Serve!"



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message