From owner-freebsd-questions@FreeBSD.ORG  Wed Jul 13 16:04:10 2005
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 7C81D16A41C
	for <freebsd-questions@freebsd.org>;
	Wed, 13 Jul 2005 16:04:10 +0000 (GMT)
	(envelope-from leblanc@keyslapper.net)
Received: from russian-caravan.cloud9.net (russian-caravan.cloud9.net
	[168.100.1.4]) by mx1.FreeBSD.org (Postfix) with ESMTP id 0B98543D46
	for <freebsd-questions@freebsd.org>;
	Wed, 13 Jul 2005 16:04:09 +0000 (GMT)
	(envelope-from leblanc@keyslapper.net)
Received: from russian-caravan.cloud9.net (localhost [127.0.0.1])
	by russian-caravan.cloud9.net (Postfix) with SMTP id 51FD615A20
	for <freebsd-questions@freebsd.org>;
	Wed, 13 Jul 2005 12:04:09 -0400 (EDT)
Received: from keyslapper.net (250-119.customer.cloud9.net [168.100.250.119])
	by russian-caravan.cloud9.net (Postfix) with ESMTP id 86F3E15659
	for <freebsd-questions@freebsd.org>;
	Wed, 13 Jul 2005 12:04:08 -0400 (EDT)
Received: from localhost (localhost [127.0.0.1])
	by keyslapper.net (Postfix) with ESMTP id 3806911514
	for <freebsd-questions@freebsd.org>;
	Wed, 13 Jul 2005 12:04:08 -0400 (EDT)
Received: from keyslapper.net ([127.0.0.1])
	by localhost (keyslapper.net [127.0.0.1]) (amavisd-new, port 10024)
	with ESMTP id 93664-07 for <freebsd-questions@freebsd.org>;
	Wed, 13 Jul 2005 12:04:07 -0400 (EDT)
Received: by keyslapper.net (Postfix, from userid 1001)
	id E663411496; Wed, 13 Jul 2005 12:04:07 -0400 (EDT)
Date: Wed, 13 Jul 2005 12:04:07 -0400
From: Louis LeBlanc <FreeBSD@keyslapper.net>
To: freebsd-questions@freebsd.org
Message-ID: <20050713160407.GI90681@keyslapper.net>
Mail-Followup-To: freebsd-questions@freebsd.org
References: <42D53321.3000409@metrocast.net>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha1;
	protocol="application/pgp-signature"; boundary="4jXrM3lyYWu4nBt5"
Content-Disposition: inline
In-Reply-To: <42D53321.3000409@metrocast.net>
X-PGP-Key: http://www.keyslapper.net/~leblanc/leblanc-at-keyslapper-net.asc
User-Agent: Mutt/1.5.9i
X-Virus-Scanned: amavisd-new at keyslapper.net
X-AntiVirus: Checked by Vexira Antivirus v1.5
Subject: Re: Using Multiple Internet Connections with FreeBSD
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
Reply-To: freebsd-questions@FreeBSD.org
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 13 Jul 2005 16:04:10 -0000


--4jXrM3lyYWu4nBt5
Content-Type: text/plain; charset=iso-8859-1
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable

On 07/13/05 11:28 AM, John Barbieri sat at the `puter and typed:
> Howdy,
>=20
>=20
> To start off, I have a FreeBSD router running Nat and dhcp, it is
> currently the router for my LAN.
>=20
> I was wondering if there was a way to aggregate more then one internet
> connection using FreeBSD?
>=20
>=20
> That is, have 2 or 3 internet connections coming in on seperate NICs,
> and being able to have the box route and nat the packets accordingly to
> the lan, thus giving the experience of more bandwidth. Is it even possibl=
e?
>=20
>=20
> Has someone done it before? and if you have, do you have a webpage that
> you followed instructions from?
>=20
> Ive been searching around, but I have not been able to find a straight
> answer. I was hoping you guys could help

I'm afraid I can't help much, but for starters, you probably need to
be clear on external services as well.  You also want to mention the
version of FreeBSD you are/intend to use, as it will affect the up
front work needed and/or the available utilities.

If external services are part of your bandwidth concerns, you should
be able to isolate internal NAT functionality away from one connection
to restrict it to external services.

If you have multiple internal LANs, you should be able to isolate them
to dedicated external connections as well.  This would be easiest if
you had a separate internal NIC for each external NIC, but that might
be overkill, and probably isn't necessary if you simply use a simple
100Mb router with full duplex capabilities.

If you're looking for load balancing NAT, meaning any outbound traffic
=66rom an internal LAN automagically picks the least saturated
connection, then you probably want to use an advanced firewall utility
and get on the users list for that tool.  I *think* pf can do this,
but I'm not sure.  I'm certainly not qualified to tell you HOW to do
it with any firewall utility, but I've found pf to be easier for
simple firewalls at least.

Try this link:
http://www.openbsd.org/faq/pf/index.html
It is probably worth your time to get on the mailing list.  The folks
there should be most qualified to help you with this.

Keep in mind, depending on your solution, it may also be necessary to
set up various routes through /etc/rc.conf (this is the one thing that
always confused me enough to keep me out of network admin work).

This exact scenario had occurred to me in the past, but I never had
the time to investigate it more thoroughly, or the connections to play
with.  Sorry I couldn't be more helpful, but I hope this gets you
closer to the mark.

Lou
--=20
Louis LeBlanc                          FreeBSD-at-keyslapper-DOT-net
Fully Funded Hobbyist,                   KeySlapper Extrordinaire :)
Please send off-list email to:         leblanc at keyslapper d.t net
Key fingerprint =3D C5E7 4762 F071 CE3B ED51  4FB8 AF85 A2FE 80C8 D9A2

ink, n.:
  A villainous compound of tannogallate of iron, gum-arabic, and water,
  chiefly used to facilitate the infection of idiocy and promote
  intellectual crime.
    -- H.L. Mencken

--4jXrM3lyYWu4nBt5
Content-Type: application/pgp-signature
Content-Disposition: inline

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.1 (FreeBSD)

iD8DBQFC1Tt3r4Wi/oDI2aIRAimRAJ9ZmwvjFHORjyBpoIXvMq1r2mND3wCfXOay
VBsH+FKowApjzHUDLg8WFzg=
=n0et
-----END PGP SIGNATURE-----

--4jXrM3lyYWu4nBt5--