From owner-freebsd-hackers@FreeBSD.ORG  Sat Oct  4 16:54:03 2003
Return-Path: <owner-freebsd-hackers@FreeBSD.ORG>
Delivered-To: freebsd-hackers@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 7E1F416A4B3
	for <freebsd-hackers@freebsd.org>;
	Sat,  4 Oct 2003 16:54:03 -0700 (PDT)
Received: from ussenterprise.ufp.org (ussenterprise.ufp.org [208.185.30.210])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 3A7BC4400D
	for <freebsd-hackers@freebsd.org>;
	Sat,  4 Oct 2003 16:54:01 -0700 (PDT)
	(envelope-from bicknell@ussenterprise.ufp.org)
Received: from ussenterprise.ufp.org (bicknell@localhost [127.0.0.1])
	by ussenterprise.ufp.org (8.12.9/8.12.9) with ESMTP id h94Ns08i021092
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO)
	for <freebsd-hackers@freebsd.org>;
	Sat, 4 Oct 2003 19:54:00 -0400 (EDT)
Received: (from bicknell@localhost)
	by ussenterprise.ufp.org (8.12.9/8.12.9/Submit) id h94Ns0QK021091
	for freebsd-hackers@freebsd.org; Sat, 4 Oct 2003 19:54:00 -0400 (EDT)
Date: Sat, 4 Oct 2003 19:54:00 -0400
From: Leo Bicknell <bicknell@ufp.org>
To: freebsd-hackers@freebsd.org
Message-ID: <20031004235400.GA20943@ussenterprise.ufp.org>
Mail-Followup-To: freebsd-hackers@freebsd.org
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Organization: United Federation of Planets
X-PGP-Key: http://www.ufp.org/~bicknell/
Subject: Changing the NAT IP on demand?
X-BeenThere: freebsd-hackers@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Technical Discussions relating to FreeBSD
	<freebsd-hackers.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-hackers>
List-Post: <mailto:freebsd-hackers@freebsd.org>
List-Help: <mailto:freebsd-hackers-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-hackers>,
	<mailto:freebsd-hackers-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 04 Oct 2003 23:54:03 -0000


I'm considering options for a new project, and I think I've discovered
what I think is the best idea, but I don't think current software
supports the config.  I'd like to get some confirmation, and comments on
if it would be hard to implement.

Consider:


ISP #1-------\
              \
              FreeBSD Box----LAN
              /
ISP #2-------/

In this case the LAN would be 1918 space, the two ISP's would each
provide a public IP for the FreeBSD box.

Now, NAT would be required.  What I want to do is write an external
application to decide the performance of ISP #1 and ISP#2, and
somehow tell NAT which outside address to use.

That, by itself, is not hard.  Here's the trick.  I want the switch
to be seamless.  That is, if NAT is translating to ISP #1 and the
application says switch to #2 the existing translations to #1 (until
they go away naturally) should be kept, while new ones go to #2.

The only ways I know to change the outside address seem to tear down
all existing connections.

Is it possible to make this work today?  Would it be hard to fix if 
it doesn't work today?

-- 
       Leo Bicknell - bicknell@ufp.org - CCIE 3440
        PGP keys at http://www.ufp.org/~bicknell/
Read TMBG List - tmbg-list-request@tmbg.org, www.tmbg.org