From owner-freebsd-net  Thu Feb 21  4:29: 3 2002
Delivered-To: freebsd-net@freebsd.org
Received: from artemis.drwilco.net (diana.drwilco.net [66.48.127.79])
	by hub.freebsd.org (Postfix) with ESMTP id 0BBA337B404
	for <freebsd-net@FreeBSD.ORG>; Thu, 21 Feb 2002 04:28:58 -0800 (PST)
Received: from ceres.drwilco.net (docwilco.xs4all.nl [213.84.68.230])
	by artemis.drwilco.net (8.11.6/8.11.6) with ESMTP id g1LCSkD98179
	(using TLSv1/SSLv3 with cipher DES-CBC3-SHA (168 bits) verified NO);
	Thu, 21 Feb 2002 07:28:48 -0500 (EST)
	(envelope-from drwilco@drwilco.net)
Message-Id: <5.1.0.14.0.20020221132702.0451fa88@mail.drwilco.net>
X-Sender: lists@mail.drwilco.net
X-Mailer: QUALCOMM Windows Eudora Version 5.1
Date: Thu, 21 Feb 2002 13:39:13 +0100
To: Nick Rogness <nick@rogness.net>, Zviratko <q@seznam.cz>
From: "Rogier R. Mulhuijzen" <drwilco@drwilco.net>
Subject: Re: Ethernet bonding/load balancing on fbsd 4-stable
Cc: freebsd-net@FreeBSD.ORG
In-Reply-To: <Pine.BSF.4.21.0202190245150.8379-100000@cody.jharris.com>
References: <003501c1b7a8$4431d5f0$0500a8c0@notes>
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
Sender: owner-freebsd-net@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-net.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-net>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-net>
X-Loop: FreeBSD.org

At 02:48 19-2-2002 -0600, Nick Rogness wrote:
>On Sun, 17 Feb 2002, Zviratko wrote:
>
> >
>[SNIP]
> >
> > I will try that, but I guess default route has precedence over ipfw.
>
>         Not in the case of ipfw fwd.  The routing decision seems to be
>         made before ipfw fwd changes the packet.

That's correct, I use a few fwd rules to have packets return on the correct 
pipe on a dual-homed machine. Basically if the source address is on a 
different pipe than my default gateway and the destination is not the local 
subnet I fwd it to the other router. Works VERY sweetly.

BTW, the fact that ng_one2many works for loadsharing over 2 cable modems 
means that your ISP is lazy with checking things (I think, I just woke up 
so thought processes are not doing too well yet =) ).
What you could have done as well is tell natd to spread the connections 
over your 2 internet IPs, and then using fwd based on src to send to the 
right cable modem. But this would require both cable modems to have a 
different default gateway. If they have default gateway you could use 
ng_bpf to look at src address and sending it out the right ng_ether node. 
That *should* work even if your ISP does hard checks on whether or not 
incoming traffic comes in on the right cable modem. It will not spread a 
single connection over both modems, but it will spread load over both 
modems for returning packets, which I don't think your solution does.

         Doc


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message