Hey, I'm not sure what the load or performance would be, but I doubt it would be much more then using a single external interface for everything.
I can say that we use EXT2IF and it does work. We use it for WAN Failover purposes though. I believe we did run into a few issues where if you had both interfaces setup as default routes (even with different metrics) it would try to load balance both circuits, which is obviously not ideal. In order to accomplish what we needed, we use static routes on the 'failover' interface to a remote host to test for connectivity. If the primary circuit goes down for a specified period of time, we have a background process that would change the routes table to set the secondary circuit as the default gateway, set a static route the same way on EXTIF, monitor it for connectivity to return, and then switch things back over when it does. You may have to do something similar along the lines of static routes to the remote locations you want to have the VPN link with in order to keep the rest of the traffic on EXTIF. Unless of course, based on your voip setup, you can do that for EXTIF instead and used EXT2IF as the default gateway (set static routes to your SIP/IAX2 gateways). Either way, it should be able to work the way you need it. -James On 08/20/2010 09:56 AM, Tom Chadwin wrote: > Hello all > > We are happily running 0.7.2 net5501s on our sites. They each have PSTN > cards, but communication between them is via IAX2 over the external NICs > connected to ADSL (the only internet connection available to us in our rural > locations). > > We currently have separate machines which run our VPNs (and firewalls, DHCP, > and web proxies) on separate ADSL lines, but these machines are > licence-encumbered (in a manner of speaking). I am interested in > investigating using our Astlinux boxes instead. However, given that the > connections are ADSL (0.8Mbps uplink), I cannot share VoIP and VPN over one > line. > > Is it possible to enable a second external interface in 0.7.2 - I seem to > remember EXT2IF being mentioned in the past - using NIC1 for VoIP and NIC 2 > for everything else, especially VPN and client PC internet access? > > If this were possible, how would the net5501-70s be likely to perform under > this load? Our head office VPN box currently runs 5 IPSec tunnels to other > offices, and 15 L2TP road warrior connections, the latter with never that > many concurrent - perhaps around 5 max, two or three normally. > > Thanks > > Tom > > > ------------------------------------------------------------------------------ > This SF.net email is sponsored by > > Make an app they can't live without > Enter the BlackBerry Developer Challenge > http://p.sf.net/sfu/RIM-dev2dev > _______________________________________________ > Astlinux-users mailing list > [email protected] > https://lists.sourceforge.net/lists/listinfo/astlinux-users > > Donations to support AstLinux are graciously accepted via PayPal to > [email protected]. > ------------------------------------------------------------------------------ This SF.net email is sponsored by Make an app they can't live without Enter the BlackBerry Developer Challenge http://p.sf.net/sfu/RIM-dev2dev _______________________________________________ Astlinux-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/astlinux-users Donations to support AstLinux are graciously accepted via PayPal to [email protected].
