From owner-freebsd-questions@FreeBSD.ORG Mon Jun 2 20:05:42 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 0CAC737B401 for ; Mon, 2 Jun 2003 20:05:42 -0700 (PDT) Received: from shiba.meibin.net (shiba.meibin.net [219.166.101.122]) by mx1.FreeBSD.org (Postfix) with ESMTP id 7593143F75 for ; Mon, 2 Jun 2003 20:05:40 -0700 (PDT) (envelope-from lukek@meibin.net) Received: (qmail 16943 invoked from network); 3 Jun 2003 03:05:26 -0000 Received: from unknown (HELO yujo) (219.114.104.11) by shiba.meibin.net with SMTP; 3 Jun 2003 03:05:26 -0000 Message-ID: <001801c3297c$a7128c40$6701a8c0@yujo> From: "lukek" To: "FreeBSD" Date: Tue, 3 Jun 2003 12:03:04 +0900 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-2022-jp" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1106 X-MIMEOLE: Produced By Microsoft MimeOLE V6.00.2800.1106 Subject: PPPoE load balancing X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Jun 2003 03:05:42 -0000 Hello, Let me apologise firstly if this is a topic which has been thrashed to death on this list. I need some advice before I get myself into a hole that is very deep, dark and lonely. I need to add an additional DSL line to my exisiting network to keep up with the expanding bandwidth requirements of the users. In a situation like this my first reaction would be to get some fibre into the office and take it from there but the building we are currently in is unsuitable for fibre ( according to the provider ) therefore for the interim I have no choice but to get additional DSL circuits. My question is how difficult is it to get one FBSD router to reliably manage multiple DSL circuits. These circuits would have static IP addresses probably /28 on the outside and there are two distinct networks internally. An ethernet segment and a wireless segment. I am using IPFilter and IPNat to provide simple NAT functions and simple firewalling functions. If I create further external links ie tun0 and tun1 will this create problems for NAT ? I am contemplating separating the two internal networks so that the ethernet segment gets routed to tun0 and wireless to tun1. Would I need two instances of IPNat and IPFilter or can I wrap all the rules into one instance of these tools ? Is there a smarter way to do this ? Any advice is appreciated as I suspect that this is not a trivial thing to accomplish reliably and given no other real options at this time I have to come up with a solution that is reliable. Ideally it would be great to be able to get load balancing and failover working but I won't push my luck. Regards, LukeK