From owner-freebsd-net@FreeBSD.ORG Wed Apr 6 18:10:18 2011 Return-Path: Delivered-To: freebsd-net@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 70F611065670 for ; Wed, 6 Apr 2011 18:10:18 +0000 (UTC) (envelope-from jhellenthal@gmail.com) Received: from mail-iw0-f182.google.com (mail-iw0-f182.google.com [209.85.214.182]) by mx1.freebsd.org (Postfix) with ESMTP id 241098FC0C for ; Wed, 6 Apr 2011 18:10:17 +0000 (UTC) Received: by iwn33 with SMTP id 33so1992712iwn.13 for ; Wed, 06 Apr 2011 11:10:17 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=gamma; h=domainkey-signature:sender:date:from:to:cc:subject:message-id :references:mime-version:content-type:content-disposition :content-transfer-encoding:in-reply-to:x-openpgp-key-id :x-openpgp-key-fingerprint:x-openpgp-key-url; bh=DQnkbXCdKjxEo/1SvPWYnxVi+3p1f8NM2OZIsgSF9H0=; b=TjEIy4GLuJJrVbS8n0prNQ5X2CleMALAJHh+GhppHr9BRoDtrw0cZCmmoog0by3jmd lHUsC0fLVwYgVWV56N5wxsFIM3FvJC83pcBgZo6dfYcnGzNM72bv22ERa3ORT1T7j1xq 7qKzVxGxThh6mlwlP4jxJR15o4jzUsVpBT0EQ= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=gamma; h=sender:date:from:to:cc:subject:message-id:references:mime-version :content-type:content-disposition:content-transfer-encoding :in-reply-to:x-openpgp-key-id:x-openpgp-key-fingerprint :x-openpgp-key-url; b=nI2EqfOyUZvd6bziI7prUYFhcLzz3CJQ4eXpPllwFk8/OD3xcCf+U7WeZPec8R5Ax9 mmzaz8rMPoUCiB4y/0Yah3xEfY5uT7DOWe1zgMR0P+UWe0aV3N/SApQ6r+j/IYCit2ir WCSr8DYJQVaaCGZ0dOhuRqnnjkPJ2m/JF7a18= Received: by 10.231.111.209 with SMTP id t17mr1214667ibp.140.1302113416544; Wed, 06 Apr 2011 11:10:16 -0700 (PDT) Received: from DataIX.net (adsl-99-190-87-163.dsl.klmzmi.sbcglobal.net [99.190.87.163]) by mx.google.com with ESMTPS id d9sm560343ibb.36.2011.04.06.11.10.14 (version=TLSv1/SSLv3 cipher=OTHER); Wed, 06 Apr 2011 11:10:15 -0700 (PDT) Sender: "J. Hellenthal" Received: from DataIX.net (localhost [127.0.0.1]) by DataIX.net (8.14.4/8.14.4) with ESMTP id p36IAB1Q052829 (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=NO); Wed, 6 Apr 2011 14:10:11 -0400 (EDT) (envelope-from jhell@DataIX.net) Received: (from jhell@localhost) by DataIX.net (8.14.4/8.14.4/Submit) id p36IAAc3052828; Wed, 6 Apr 2011 14:10:10 -0400 (EDT) (envelope-from jhell@DataIX.net) Date: Wed, 6 Apr 2011 14:10:10 -0400 From: "J. Hellenthal" To: "K. Macy" Message-ID: <20110406181010.GB50909@DataIX.net> References: <1128701301678831@web100.yandex.ru> <20110406120207.GA32062@DataIX.net> <5A6C513B-E30B-4E32-8556-D6501E8EE59B@gmail.com> MIME-Version: 1.0 Content-Type: text/plain; charset=utf-8 Content-Disposition: inline Content-Transfer-Encoding: 8bit In-Reply-To: X-OpenPGP-Key-Id: 0x89D8547E X-OpenPGP-Key-Fingerprint: 85EF E26B 07BB 3777 76BE B12A 9057 8789 89D8 547E X-OpenPGP-Key-URL: http://bit.ly/0x89D8547E Cc: Baginski Darren , Nikolay Denev , freebsd-net@freebsd.org, Michael Proto Subject: Re: Multiple gateways support X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 06 Apr 2011 18:10:18 -0000 Hmmm funny, seems the mailing list is now stripping my address and moving posts to the top. On Wed, Apr 06, 2011 at 06:15:19PM +0200, K. Macy wrote: > The weights of the links can be changed at run time. If one link is > not passing traffic its weight should be set to zero until such time > as it is passing traffic again. > > On Wed, Apr 6, 2011 at 6:13 PM, Nikolay Denev wrote: > > On Apr 6, 2011, at 5:36 PM, Michael Proto wrote: > > > >> On Wed, Apr 6, 2011 at 8:02 AM, J. Hellenthal wrote: > >>> On Wed, Apr 06, 2011 at 01:45:54PM +0400, Eir Nym wrote: > >>>> On 1 April 2011 21:27, Baginski Darren wrote: > >>>>> Hi! > >>>>> > >>>>> Could please someone tell me about current state of multiple gw capabilities of FreeBSD? > >>>>> I have dual homed FreeBSD box, one interface ISP1 another ISP2 : > >>>>> 1) can I balance outgoing traffic across them ? > >>>>> 2) Is there support of any kind dead gateway detection? > >>>>> 3) Can I install multiple routes to the same network (with same and with different wight)? If yes how it behaves with one link failure, in particular if interface is down? > >>>>> > >>> > >>> From what you said here it seems that your looking for lagg(4) with > >>> configured with the loadbalance option. Give this man page [1] a > >>> thorough read and youll probably see what your looking for. > >>> > >>> 1) http://www.freebsd.org/cgi/man.cgi?query=lagg > >>> > >>> > >>>> > >>>> about multiply GWs: you can set multiply gw via setfib(1) utility and > >>>> use fib in your firewall rules. But it is not very handy with DHCP and > >>>> rc(8) (setfib is located in /usr/bin and can't be used in /etc/rc.d). > >>>> Due to this I have to add another FreeBSD box to handle dynamic > >>>> routes. > >>>> > >>>> This is the one thing I know which can I do in linux easily and in > >>>> freebsd with hacks. > >>> > >>> -- > >>> > >>>  Regards, > >>> > >>>  J. Hellenthal > >>>  JJH48-ARIN > >>>  0x89D8547E > >>> > >>> > >> > >> > >> I don't think lagg(4) will work here, as its designed for two > >> interfaces that are attached to the same network (see the example in > >> the man page). For two different ISPs, I think the setfib approach is > >> probably the way to go. > >> > >> > >> -Proto > >> > > > > Actually I think the OP is asking about the "options RADIX_MPATH" feature. > > > > 1) Yes, It can balance over the two links but only using Modulo-N Hash (RFC2991) algorithm, and probably you should setup NAT on both links. > > 2) AFAIK there is no dead gw detection code yet. > > 3) Yes you can do that. There were some fixes for handling interfaces with no-link but I was not able to see it working in my setup. e.g. the host still tries to send traffic to a interface with no link, effectively blackholing the traffic (this was tested on a soekris box with if_vr(4)) > > > > IMHO the whole RADIX_MPATH stuff is still in experimental stage and needs some more work to work correctly. > > > > There is a recent thread about some improvements in RADIX_MPATH. > > > > Regards, > > Nikolay > > > > _______________________________________________ > > freebsd-net@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-net > > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" > > > _______________________________________________ > freebsd-net@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-net > To unsubscribe, send any mail to "freebsd-net-unsubscribe@freebsd.org" -- Regards, J. Hellenthal JJH48-ARIN 0x89D8547E