Re: Multiple Internet connection
On Thu, 20 Mar 2003, Allan Jude - ShellFusion.net Administrator wrote: I have a FreeBSD box that has 3 nic's. 2 of them are connected to separate internet connections, and the 3rd is a lan. When data is coming in over one of the connections, it comes over the nic to which that ip is assigned, but, outgoing traffic, even if bound to the second nic, always going out over the first nic. Is there a way to have the 2 links share the load of the outgoing traffic, as well as the incoming. Not to load balance no, without other daemons running routing protocols. Even then, it takes routing peering with your upstream ISPs. Nick Rogness [EMAIL PROTECTED] - How many people here have telekenetic powers? Raise my hand. -Emo Philips ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to [EMAIL PROTECTED]
Re: Multiple Internet connection with failover/load-balancing
Domain Administrator wrote: Hello all, We've been offering commercial Internet failover/load-balancing products to our clients, but we occasionally receive requests by some clients to provide less costly solution. While full redundancy for both inbound and outbound traffic will require BGP or OSPF, these clients simply wish to join multiple Internet connections (DSL, ISDN or T1) from different providers to gain failover capability should one of their links failed. Without ISPs' support, this type of redundancy only applies to outbound traffic, but that will suffice the clients' requirements already. I searched through the mailing lists and forums but found only very limited resources on how to accomplish such gateway/firewall setup using FreeBSD (or other BSD). It seeems for this type of setup requires running of multiple NAT daemons. Has anyone done something like this? or point me to any HOW-TOs? No howtos, but if you install mpd (from ports) there's good documentation on how to set up multilink connections. -- Bill Moran Potential Technologies http://www.potentialtech.com To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: Multiple Internet connection with failover/load-balancing
Hi Bill, Thanks for the pointer! This one looks promising, I will set it up and give it a try. Mike No howtos, but if you install mpd (from ports) there's good documentation on how to set up multilink connections. -- Bill Moran Potential Technologies http://www.potentialtech.com To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Multiple Internet connection
I have a FreeBSD box that has 3 nic's. 2 of them are connected to separate internet connections, and the 3rd is a lan. When data is coming in over one of the connections, it comes over the nic to which that ip is assigned, but, outgoing traffic, even if bound to the second nic, always going out over the first nic. Is there a way to have the 2 links share the load of the outgoing traffic, as well as the incoming. To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Multiple Internet connection with failover/load-balancing
Hello all, We've been offering commercial Internet failover/load-balancing products to our clients, but we occasionally receive requests by some clients to provide less costly solution. While full redundancy for both inbound and outbound traffic will require BGP or OSPF, these clients simply wish to join multiple Internet connections (DSL, ISDN or T1) from different providers to gain failover capability should one of their links failed. Without ISPs' support, this type of redundancy only applies to outbound traffic, but that will suffice the clients' requirements already. I searched through the mailing lists and forums but found only very limited resources on how to accomplish such gateway/firewall setup using FreeBSD (or other BSD). It seeems for this type of setup requires running of multiple NAT daemons. Has anyone done something like this? or point me to any HOW-TOs? Thank you all for your input. Mike To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-isp in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
Re: AW: Multiple Internet connection with failover/load-balancing
Hellow Arie, I came across Nexland Turbo product and other packaged software solutions such as StoneGate (www.stonesoft.com) and ePipe ServerWare (www.ml-ip.com). The only downside about Nexland is that it only comes with 2 WAN ports, otherwise it's a pretty cost effective solution. The packages software solutions aren't limited to the number of NICs used for WAN, but they all come with VPN support built-in, something that adds extra dollars to the pricing, but not needed by clients (some already have VPN). I'm still evaluating and comparing which solution we want to go with, as well as time and costs. It would be nice if some insiders from Nexland or StoneGate post their HOW-TOs... Thanks for your valuable information Arie. Mike -- Hi Mike I tried it, am still trying it (low priority task) and still did not achieve it. It is hard and very complex. I found some products which could do it. The least costly (don't know how well) is the Nexland Turbo Pro or so router, which is meant to do just that. Search their website, you'll see. I was contacted by a company which sells a software doing that too. Price with a box is approx. 10k USD, so quite expensive. But they have a GUI, which makes life for administrators sometimes easier. The biggest problem seems to detect the failure of one link. Ie. if you have your freebsd box with 3 NICs, nic1 - isp1 via cable; nic2 - isp2 via adsl; nic3 - to your lan or whatever. Both ISPs will have some CPE at your location, probably your adsl modem and the cable tv modem. If now one link fails, say the cable link, this will have in 99.9% of the cases no impact between your cable modem and your freebsd box, so the link between the freebsd box and your CPE of the cable isp will stay up. That's the hard trick now, to detect, that the cable link has failed. Some products, as Radware's Linkproof, have own algorithms to track such a failure down. A basic load sharing with no failover redundance can be made (to what I under- stand) by adding 2 default routes, with the same metric. But that is not all you'd want or need. Just technically speaking, I think you could do that: - box with 3 nics - nat and 2 default routes - cron job, which runs every 10secs which detects a link fail -- remove the appropriate route from the routing table. Ok, now you have a failover box. But you still have your single point of failure, it's the freebsd box itself. Ok, now you could come up with some heartbeat or other HA full clustered solution. In the end, you buy so much hardware and you'd use so much time, that it might me simplier, hassle-free and just cheaper, to buy a 10k USD box, even if you might find a cheaper one on ebay et al. Regards Arie -Ursprungliche Nachricht- Von: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] Auftrag von Domain Administrator Gesendet: Donnerstag, 20. Marz 2003 07:24 An: [EMAIL PROTECTED]; [EMAIL PROTECTED] Betreff: Multiple Internet connection with failover/load-balancing Hello all, We've been offering commercial Internet failover/load-balancing products to our clients, but we occasionally receive requests by some clients to provide less costly solution. While full redundancy for both inbound and outbound traffic will require BGP or OSPF, these clients simply wish to join multiple Internet connections (DSL, ISDN or T1) from different providers to gain failover capability should one of their links failed. Without ISPs' support, this type of redundancy only applies to outbound traffic, but that will suffice the clients' requirements already. I searched through the mailing lists and forums but found only very limited resources on how to accomplish such gateway/firewall setup using FreeBSD (or other BSD). It seeems for this type of setup requires running of multiple NAT daemons. Has anyone done something like this? or point me to any HOW-TOs? Thank you all for your input. Mike To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-isp in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-isp in the body of the message To Unsubscribe: send mail to [EMAIL PROTECTED] with unsubscribe freebsd-questions in the body of the message
