From owner-freebsd-isp@FreeBSD.ORG Sun Jun 6 11:38:16 2004 Return-Path: Delivered-To: freebsd-isp@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 316C416A4CE for ; Sun, 6 Jun 2004 11:38:16 -0700 (PDT) Received: from bigass1.bitblock.com (ns1.bitblock.com [66.199.170.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id E9C9A43D1D for ; Sun, 6 Jun 2004 11:38:15 -0700 (PDT) (envelope-from mitch@bitblock.com) Received: from a1200 ([24.83.187.201]) (AUTH: LOGIN mitch@bitblock.com) by bigass1.bitblock.com with esmtp; Sun, 06 Jun 2004 18:38:12 +0000 X-Abuse-Reports: Visit http://www.bitblock.com/abuse.php X-Abuse-Reports: and submit a copy of the message headers X-Abuse-Reports: or review our policies and procedures X-Abuse-Reports: ID= 40C36494.0000DE20.bigass1.bitblock.com,dns; a1200 ([24.83.187.201]),AUTH: LOGIN mitch@bitblock.com From: "Mitch (bitblock)" To: "Rene de Vries" Date: Sun, 6 Jun 2004 11:38:11 -0700 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 8bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0) X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 Importance: Normal In-Reply-To: <8EBC1C3A-B7E1-11D8-BD82-00039357FA7A@canyon.xs4all.nl> cc: freebsd-isp@freebsd.org cc: "David J. Hughes" cc: 'Joe Hamelin' Subject: RE: 2 adsl connections load balancing with natd/ipfw X-BeenThere: freebsd-isp@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Internet Services Providers List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 06 Jun 2004 18:38:16 -0000 Hi Rene! That concept was recently suggested to me by a friend on another project - I haven't had a chance to try it yet though - any pointers on a starter rule set greatly appreciated... thanks. m/ > -----Original Message----- > From: Rene de Vries [mailto:rene@canyon.xs4all.nl] > Sent: Sunday, June 06, 2004 10:47 AM > To: Mitch (bitblock) > Cc: 'Joe Hamelin'; freebsd-isp@freebsd.org; David J. Hughes > Subject: Re: 2 adsl connections load balancing with natd/ipfw > > > Mitch, > > Why so complicated. > > Simply start two different natd instances one for each ADSL line. Make > one of the ADSL lines the default route. Then based on the source > address (just modified by natd) fast-route traffic which tries to leave > via the default route over the wrong interface to the other interface's > next hop (using ipfw). > > You could apply various methods of determining over which ADSL line the > traffic will leave, e.g. source port, source address, dest address > etc... > > This solution doesn't require provider assistance and would even work > when you have two different providers. > > René > > On May 26, 2004, at 2:59, Mitch (bitblock) wrote: > > > Hey David - didn't see your reply before I replied to Joe there - any > > more > > info appreciated - I have both ends of the solution (I think) - just > > need to > > know the best way to config! > > > > Consider these ip's and interfaces... what do I do? Is ISPF lighter > > weight > > than BGP (considering the limited deployment?) > > > > Client A <-----\ > > X.X.X.2 \ > > ----------> Router <-------------> > > / / X.X.X.1 X.X.Y.2 > > X.X.X.3 / / > > Client B <-----/ / > > <------/ > > X.X.X.4 > > > > Router is FreeBSD based, and Client A and Client B are also FreeBSD > > based, > > and have a second interface to the internal networks at Client A and > > Client > > B. > > > > I'm wondering if my other problem (the fact that Client A can't see > > Client B > > as there is an ATM path for it to Router, but as Client B's addresses > > are on > > the same subnet, and not bounced off the Router (and there is no > > direct ATM > > path) there is no connection... > > > > Any help or advice greatly appreciated. > > > > Thanks. > > > > m/ > > > >> -----Original Message----- > >> From: owner-freebsd-isp@freebsd.org > >> [mailto:owner-freebsd-isp@freebsd.org]On Behalf Of David J. Hughes > >> Sent: Tuesday, May 25, 2004 4:08 PM > >> To: 'Joe Hamelin'; freebsd-isp@freebsd.org > >> Subject: RE: 2 adsl connections load balancing with natd/ipfw > >> > >> > >> > >> Actually, that isn't quite correct. You do not need a virtual IP > >> address (such as an HSRP or VRRP setup). You just need equal cost > >> paths from the ISP to you. > >> > >> To achieve this you will need to route an address range from your > >> ISP to your network. It can be your address space, a small piece > >> of ISP provided space, or even a chunk of private space. Just as > >> long as it's routed from the ISP to you via the DSL tails. The > >> ISP just needs to see equal cost paths to your prefix via BOTH > >> your DSL tails. That way they will use both. > >> > >> There are several ways to do this (inc running eBGP or OSPF to them > >> from your equipment). Have a chat with your ISP to see what options > >> they would consider. > >> > >> > >> David > > > > _______________________________________________ > > freebsd-isp@freebsd.org mailing list > > http://lists.freebsd.org/mailman/listinfo/freebsd-isp > > To unsubscribe, send any mail to "freebsd-isp-unsubscribe@freebsd.org" > > > -- > René de Vries > Tunix Internet Security & Training > >