Re: Multi-homed Internet connection

Volker Tanger Tue, 10 Jul 2001 07:18:33 -0700
Alvin Oga schrieb:

> >               ##########
> >    |--dsl-----##########
> > me-|          #internet#----work
> >    |--dialup--##########
> >               ##########
> >
>
>      i am thinking of more tricks ??? .. just thinking outloud...
>         isp#1 routes 1.2.3.4  to www.foo.com
>         isp#2 routes 5.6.7.8  to www.bar.com

I've got an evil idea when reading these lines:

Assume
    "me"-Firewall = 10.1.1.254   (external interface, Router-DMZ=10.1.1.0/24)
    ISP-1-Router = 10.1.1.1
    ISP-2-Router = 10.1.1.2

On your "me"-Firewall set
    route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.1.1.1 metric 0
    route add -net 0.0.0.0 netmask 128.0.0.0 gw 10.1.1.2 metric 1
    route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.1.1.1 metric 1
    route add -net 128.0.0.0 netmask 128.0.0.0 gw 10.1.1.2 metric 0

With this you have a kind of load-balancing  (sorta' statistically) and a (very
limited) failover. The failover only works if the LOCAL router device goes down.
This may be a full-failover-trick for dialup lines, but for
separate-hardware-router-lines you need to switch off the faulty router if the
line (or provider) has a problem to get the failover running.

Bye
    Volker

--

Volker Tanger  <[EMAIL PROTECTED]>
 Wrangelstr. 100, 10997 Berlin, Germany
    DiSCON GmbH - Internet Solutions
         http://www.discon.de/


_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
Re: Multi-homed Internet connection

Reply via email to
