Gateway load balance
Gary Gatten
Ggatten at waddell.com
Wed Jun 17 18:21:57 UTC 2009
I meant, the original source flows are nat'd to whatever outbound interface ip they are RRLB to. That way any internal flow can use any isp connection. Most of my interesting routing, NAT, etc I do with Ci$co so not all that up on BSD's options.
----- Original Message -----
From: owner-freebsd-questions at freebsd.org <owner-freebsd-questions at freebsd.org>
To: Gary Gatten
Cc: freebsd-questions at freebsd.org <freebsd-questions at freebsd.org>; raulbecette at unp.edu.ar <raulbecette at unp.edu.ar>
Sent: Wed Jun 17 13:13:59 2009
Subject: Re: Gateway load balance
> Adding 2 more default routes with same weight to each dsl line won't work?
No, because you have to route things beginning from connection 1 subnet
through connection 1, connection 2 subnet through connection 2 etc.
Your idea will result in routing all outgoing traffic randomly through 3
lines. At least with polish telecom it will not work. If you have
connection with say 12.34.56.72/29 subnet, you have to send packets from
that subnet.
And that's proper behaviour, as it blocks spoofing.
>
> ----- Original Message -----
> From: owner-freebsd-questions at freebsd.org <owner-freebsd-questions at freebsd.org>
> To: FreeBSD Users <freebsd-questions at freebsd.org>
> Sent: Wed Jun 17 12:18:07 2009
> Subject: Gateway load balance
>
> Hi all
>
> First time posting.
>
> I am a long time Linux user (desktop and server) and started with
> FreeBSD a year ago.
> Thanks to the book Absolute FreeBSD 2nd Edition I learned a lot about
> the OS and how to configure different services I used in Linux (Slackware).
>
> My post is regarding something I couldn't find information on how to
> implement it. Here's the situation:
>
> I had a proxy server (Squid + Dansguardian) under Slackware on the LAN
> which, via 'ip route' I make it use 3 gateways connected each one to an
> ADSL line and balance the requests.
> Unfortunately my server crashed and I took the oportunity to install a
> new one under FreeBSD 7.0-RELEASE. Squid and Dansguardian are working
> fine. My problem is that I don't know how to make the server use the
> other 2 gateways I have left and balance the requests on all ADSL lines.
>
> 192.168.10.9/16 proxy
> 192.168.10.2/16 1st gateway (1 NIC to LAN - 2 NIC
> to ADSL modem)
> 192.168.30.100/16 2nd gateway
> 192.168.30.1/16 3rd gateway
>
> I found it could be done with PF (also read most of The Book of PF) but
> I am quite lost about how to do it.
>
> Any information would be greatly appreciated.
>
> Thanks in advance
>
> Raúl I. Becette
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
>
>
>
>
>
> <font size="1">
> <div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'>
> </div>
> "This email is intended to be reviewed by only the intended recipient
> and may contain information that is privileged and/or confidential.
> If you are not the intended recipient, you are hereby notified that
> any review, use, dissemination, disclosure or copying of this email
> and its attachments, if any, is strictly prohibited. If you have
> received this email in error, please immediately notify the sender by
> return email and delete this email from your system."
> </font>
<font size="1">
<div style='border:none;border-bottom:double windowtext 2.25pt;padding:0in 0in 1.0pt 0in'>
</div>
"This email is intended to be reviewed by only the intended recipient
and may contain information that is privileged and/or confidential.
If you are not the intended recipient, you are hereby notified that
any review, use, dissemination, disclosure or copying of this email
and its attachments, if any, is strictly prohibited. If you have
received this email in error, please immediately notify the sender by
return email and delete this email from your system."
</font>
More information about the freebsd-questions
mailing list