From owner-freebsd-questions@FreeBSD.ORG Tue Jun 3 00:46:50 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 16C8A37B401 for ; Tue, 3 Jun 2003 00:46:50 -0700 (PDT) Received: from mail6.bluewin.ch (mail6.bluewin.ch [195.186.4.229]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0EF9D43F85 for ; Tue, 3 Jun 2003 00:46:49 -0700 (PDT) (envelope-from raphael@computer-rental.ch) Received: from computer-rental.ch (62.203.94.140) by mail6.bluewin.ch (Bluewin AG 6.7.018) id 3ED4AD4200088823; Tue, 3 Jun 2003 07:46:47 +0000 Date: Tue, 3 Jun 2003 09:46:10 +0200 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Mime-Version: 1.0 (Apple Message framework v552) To: "lukek" From: =?ISO-8859-1?Q?Rapha=EBl_Marmier?= In-Reply-To: <001801c3297c$a7128c40$6701a8c0@yujo> Message-Id: <711EF376-9597-11D7-B3B5-000393D67E4A@computer-rental.ch> Content-Transfer-Encoding: quoted-printable X-Mailer: Apple Mail (2.552) cc: FreeBSD Subject: Re: PPPoE load balancing X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 03 Jun 2003 07:46:50 -0000 This is quite recent, but get a look at OpenBSD 3.3 (www.openbsd.org)=20 and its packet filter, pf=20 (ftp://ftp.openbsd.org/pub/OpenBSD/doc/pf-faq.pdf). It does support=20 bundling unreleated and uncooperative links together. With some=20 scripting, you should even be able to track when a link goes down and=20 reload the rules without it, giving you some sort of failure tolerance. Of course, it is a bit of a hack, but as you need for only 6 monthes... Raphael Le Mardi, 3 juin 2003, =E0 05:03 Europe/Zurich, lukek a =E9crit : > Hello, > Let me apologise firstly if this is a topic which has been thrashed to=20= > death > on this list. I need some advice before I get myself into a hole that=20= > is > very deep, dark and lonely. > > I need to add an additional DSL line to my exisiting network to keep=20= > up with > the expanding bandwidth requirements of the users. In a situation like=20= > this > my first reaction would be to get some fibre into the office and take=20= > it > from there but the building we are currently in is unsuitable for=20 > fibre ( > according to the provider ) therefore for the interim I have no choice=20= > but > to get additional DSL circuits. > > My question is how difficult is it to get one FBSD router to reliably=20= > manage > multiple DSL circuits. These circuits would have static IP addresses > probably /28 on the outside and there are two distinct networks=20 > internally. > An ethernet segment and a wireless segment. > > I am using IPFilter and IPNat to provide simple NAT functions and=20 > simple > firewalling functions. If I create further external links ie tun0 and=20= > tun1 > will this create problems for NAT ? I am contemplating separating the=20= > two > internal networks so that the ethernet segment gets routed to tun0 and > wireless to tun1. Would I need two instances of IPNat and IPFilter or=20= > can I > wrap all the rules into one instance of these tools ? > > Is there a smarter way to do this ? > > Any advice is appreciated as I suspect that this is not a trivial=20 > thing to > accomplish reliably and given no other real options at this time I=20 > have to > come up with a solution that is reliable. Ideally it would be great to=20= > be > able to get load balancing and failover working but I won't push my=20 > luck. > > Regards, > > LukeK > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to=20 > "freebsd-questions-unsubscribe@freebsd.org"