On Tue, 10 Jul 2001, Alvin Oga wrote:
> i think this is the norm... but it works ??? because...
>
> a) you have ppp + tcp/ip
>
> b) you either use one or the other...but NOT both at the same time
>
> c) you dont have www.you.com where the folks on internet needs to find
> your server on your dsl line ...
>
>
> for the dual T1 case.... it wont work for many reasons ??
>
> a) both are tcp/ip
>
> b) we want to use both t1 connections and load balance um
>
> c) we want the outside world to always find our www.foo.com servers
> which requires an autonomous ip# routable by both ISPs
> and/or tricks play locally
I think I may have explained that wrong. Using the same diagram
##########
|--dsl-----##########
me-| #internet#----work
|--dialup--##########
##########
Lets assume that my router (me) has two interfaces numbered 2.2.2.2 and
1.1.1.1, dsl and dialup. The address that I would be assigning to
www.foo.com would be neither of those. It would an address from a block of
addresses borrowed from 'work', lets say 3.3.3.0/29, which is routed
through the two tunnels. All incoming traffic comes in via 'work', then
gets balanced out between the two tunnels. This works the same way as if I
had a pair of private circuits between 'me' and 'work', but instead of
accual circuits there are virtual ones.
Neither the dsl isp or the dialup isp have to participate in any kind of
dynamic routing because the ip space which is being routed is being
encapsulated inside the tunnels.
--
Edward Fahner
Systems Administrator, Planet Communications Network
(540)442-6677 x222 [aka. Akatosh .CU.Au, [EMAIL PROTECTED]]
DC2.DwGmL--WT--SksCre+\Cvi+BflA(+r-v+++)N^MH+$-Fj~R+Ac+++!J+S+U-I--#V+++Q+Tc++
GCSds:-a---C++++UL++++P---L++++E-W++N+o?K-w---O-M--V-PS+PE?YPGPt+5++XR*!tvb++(+++)DI++D++Geh+r++y+
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
