From owner-freebsd-net@FreeBSD.ORG  Sat Sep 23 00:28:41 2006
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
X-Original-To: freebsd-net@freebsd.org
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E3FED16A407
	for <freebsd-net@freebsd.org>; Sat, 23 Sep 2006 00:28:41 +0000 (UTC)
	(envelope-from jyavenard@gmail.com)
Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.189])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 288D243D58
	for <freebsd-net@freebsd.org>; Sat, 23 Sep 2006 00:28:40 +0000 (GMT)
	(envelope-from jyavenard@gmail.com)
Received: by nf-out-0910.google.com with SMTP id n29so1365093nfc
	for <freebsd-net@freebsd.org>; Fri, 22 Sep 2006 17:28:39 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com;
	h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
	b=OKY1d7UC5sVmPy9kgR7CFoZ2SexCPFm4mUbjwMo1Wwe4SDqM7mgfmTZq1l3vxMLw4fTF3e9LtzjdvhbADQdoov/dsUFTIj/gYdl5PAIn6amlPplSrmoeEIntA8YooNWmzSLXs27BNf3C9bP45x49351ZkVbq7W6VWJ5b6L2TM3I=
Received: by 10.49.41.18 with SMTP id t18mr2729131nfj;
	Fri, 22 Sep 2006 17:28:39 -0700 (PDT)
Received: by 10.49.80.17 with HTTP; Fri, 22 Sep 2006 17:28:39 -0700 (PDT)
Message-ID: <cb44e8370609221728t2c20f5cfp7b9f914858225e91@mail.gmail.com>
Date: Sat, 23 Sep 2006 10:28:39 +1000
From: "Jean-Yves Avenard" <jyavenard@gmail.com>
To: freebsd-net@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: quoted-printable
Content-Disposition: inline
Subject: Issue with IPFW forward
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 23 Sep 2006 00:28:42 -0000

Hello

I apologize in advance if this is not the right place to ask, in which
case could you point me where would be the right place ?


I've been trying to use two ADSL connection on the same machine, and
that it will answer traffic using the same connection it went through

Unfortunately, I can't get it to work.

A more accurate description of my system:

FreeBSD 6.1
two PPPoE link

ifconfig:
tun1: flags=3D8051<UP,POINTOPOINT,RUNNI=AD NG,MULTICAST> mtu 1492
inet 1.1.1.1 --> 10.10.10.10 netmask 0xffffffff
tun2: flags=3D8051<UP,POINTOPOINT,RUNNI=AD NG,MULTICAST> mtu 1492
inet 2.2.2.2 --> 20.20.20.20 netmask 0xffffffff

netstat -rn would give me:

Destination Gateway Flags Refs Use Netif Expire
default 10.10.10.10 UGS 0 4344 tun1
20.20.20.20 2.2.2.2 UH 0 6 tun2

I then added:
ipfw add 10 fwd 20.20.20.20 log ip from 2.2.2.2 to any
ipfw add 20 allow ip from any to any

if on a remote machine I do:
ping 2.2.2.2, nothing comes back
however, I can see the IPFW counter increasing while the ping command
is running.

If I try to ssh to 2.2.2.2, In the log I see:
Sep 22 19:08:32 gateway kernel: ipfw: 10 Forward to 20.20.20.20 TCP
2.2.2.2:22 203.214.80.131:38069 out via tun1

As you can see, it is still trying to go through tun1 when I believe
it should go through tun2 !

I can ping 20.20.20.20 without issues from the freebsd server, so I
believe the static route there is okay.

Have I missed something obvious?
Thanks for helping me out
JY