From owner-freebsd-pf@FreeBSD.ORG Tue Mar 27 13:38:53 2007 Return-Path: X-Original-To: freebsd-pf@freebsd.org Delivered-To: freebsd-pf@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id B005D16A4CB for ; Tue, 27 Mar 2007 13:38:53 +0000 (UTC) (envelope-from dudu.meyer@gmail.com) Received: from nf-out-0910.google.com (nf-out-0910.google.com [64.233.182.184]) by mx1.freebsd.org (Postfix) with ESMTP id 3EEDB13C4B9 for ; Tue, 27 Mar 2007 13:38:52 +0000 (UTC) (envelope-from dudu.meyer@gmail.com) Received: by nf-out-0910.google.com with SMTP id k27so2969522nfc for ; Tue, 27 Mar 2007 06:38:52 -0700 (PDT) DKIM-Signature: a=rsa-sha1; c=relaxed/relaxed; d=gmail.com; s=beta; h=domainkey-signature:received:received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=VSRZU+mDl3aiT0/MbpaSnujzZ0r3J+7zD88QY7FIV7yzsKRfVyEGu8MJwV+VyeMSup1xERdheIvMvwM9amDgLVsDTOwiMzjG9e0xMRdWmcNXluFnZ1mssgwk3nijAD1tIKj3AcA2Q7k9FmP/SPn5ak7d02fVUgu7FJPUsTzOeHg= DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:content-disposition:references; b=InVSucFUz0KVbWqfiZbjtGTGhznlKGxgFxHyY82+lFlfpev3YjCC9nZhqZVJU9RhaL9TD3ReDOQi2u48qVV/wTmycjHq0ZIQCH5bYz61jjfuiN3vKIKV8m5oRCUJc1JeCaRozFSw8Ck9WD4Oj/HUDu8dMaqyqS37WN3nGyj0agM= Received: by 10.82.163.13 with SMTP id l13mr16321456bue.1175002731366; Tue, 27 Mar 2007 06:38:51 -0700 (PDT) Received: by 10.82.174.10 with HTTP; Tue, 27 Mar 2007 06:38:51 -0700 (PDT) Message-ID: Date: Tue, 27 Mar 2007 10:38:51 -0300 From: "Eduardo Meyer" To: "Joe Holden" , freebsd-pf@freebsd.org In-Reply-To: <46091B41.4020307@joeholden.co.uk> MIME-Version: 1.0 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline References: <46091B41.4020307@joeholden.co.uk> Cc: Subject: Re: How to balance my own outgoing traffic? X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: "Technical discussion and general questions about packet filter \(pf\)" List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 27 Mar 2007 13:38:53 -0000 Yes, round-robin will do. My problem is how to do this, I have tried the following kiind of approach: On 3/27/07, Joe Holden wrote: > Eduardo Meyer wrote: > > Hello, > > > > I have a multihomed squid box with two direct-to-internet cable links. > > however they come from different telecoms, so, no way to use advanced > > routing since I am not an AS. The deal is to make policy routing. > > > > However, besides doing route-to on a NAT box for whole networks, I > > have no idea on how to route-to my own traffic, which is what I need > > now. > > > > I can set my squid outgoing_ip to whatever I want. > > > > How can I balance my own outgoing traffic? Suggestions? > > > You can use PF in a round-robin style configuration to balance it, > although as far as I am aware, it isn't exactly 50/50. > > Not sure what else to suggest pass out on $ext_if route-to { ($ext_if1 $ext_gw1), ($ext_if2 $ext_gw2) } round-robin proto tcp from $myown to any flags S/SA modulate state However I can not, say, route-to $ext_gw2 traffic from $ext_ifi1's IP address. I need to combine it with NAT, right? How to do this is what I am confused.