load balanced adsl lines

All of lore.kernel.org
 help / color / mirror / Atom feed

* load balanced adsl lines
@ 2004-07-04 10:52 Mark Coetser
  2004-07-05  2:30 ` Ming-Ching Tiew
  0 siblings, 1 reply; 2+ messages in thread
From: Mark Coetser @ 2004-07-04 10:52 UTC (permalink / raw)
  To: netfilter

[-- Attachment #1: Type: text/plain, Size: 3049 bytes --]

Hi Ppl

I have 5 adsl lines that after reading quite a bit i managed to get load balanced now abvoiusly it doesnt load balance evenly and this works on what routes are still in the routing cache. my question is my outbound masquerading had to be modified to use snat in iptables instead of just plain masquerading my outbound masquerading now works but my inbound port forwarding doesnt work would this be an iptables problem or a routing issue...

i have opened all the relavent ports on each of the interfaces and I am not getting any logged denies the connection just never opens

I am running the following

debian woody

kernel 2.6.6

iptables v1.2.6a

Chain PREROUTING (policy ACCEPT 20 packets, 4483 bytes)
 pkts bytes target     prot opt in     out     source               destination
    0     0 DNAT       tcp  --  ppp0   *       0.0.0.0/0            0.0.0.0/0          tcp dpt:110 to:10.0.0.12:110
    0     0 DNAT       tcp  --  ppp1   *       0.0.0.0/0            0.0.0.0/0          tcp dpt:110 to:10.0.0.12:110
    0     0 DNAT       tcp  --  ppp2   *       0.0.0.0/0            0.0.0.0/0          tcp dpt:110 to:10.0.0.12:110
    0     0 DNAT       tcp  --  ppp3   *       0.0.0.0/0            0.0.0.0/0          tcp dpt:110 to:10.0.0.12:110
    0     0 DNAT       tcp  --  ppp4   *       0.0.0.0/0            0.0.0.0/0          tcp dpt:110 to:10.0.0.12:110

Chain FORWARD (policy DROP 0 packets, 0 bytes)
 pkts bytes target     prot opt in     out     source               destination
    0     0 ACCEPT     tcp  --  ppp0   eth0    0.0.0.0/0            10.0.0.12          tcp dpt:110
    0     0 ACCEPT     tcp  --  ppp1   eth0    0.0.0.0/0            10.0.0.12          tcp dpt:110
    0     0 ACCEPT     tcp  --  ppp2   eth0    0.0.0.0/0            10.0.0.12          tcp dpt:110
    0     0 ACCEPT     tcp  --  ppp3   eth0    0.0.0.0/0            10.0.0.12          tcp dpt:110
    0     0 ACCEPT     tcp  --  ppp4   eth0    0.0.0.0/0            10.0.0.12          tcp dpt:110


ip rule list
0:      from all lookup local
32761:  from 165.165.170.110 lookup T5
32762:  from 165.165.187.47 lookup T4
32763:  from 165.165.189.95 lookup T3
32764:  from 165.165.163.95 lookup T2
32765:  from 165.165.179.151 lookup T1
32766:  from all lookup main
32767:  from all lookup default

ip route sh
165.165.160.1 dev ppp1  proto kernel  scope link  src 165.165.163.95
165.165.160.1 dev ppp3  proto kernel  scope link  src 165.165.187.47
165.165.160.1 dev ppp4  proto kernel  scope link  src 165.165.170.110
165.165.160.1 dev ppp0  proto kernel  scope link  src 165.165.179.151
165.165.160.1 dev ppp2  proto kernel  scope link  src 165.165.189.95
10.0.0.0/24 dev eth0  proto kernel  scope link  src 10.0.0.1
default
        nexthop via 165.165.160.1  dev ppp0 weight 1
        nexthop via 165.165.160.1  dev ppp1 weight 1
        nexthop via 165.165.160.1  dev ppp2 weight 1
        nexthop via 165.165.160.1  dev ppp3 weight 1
        nexthop via 165.165.160.1  dev ppp4 weight 1




[-- Attachment #2: Type: text/html, Size: 7292 bytes --]

^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: load balanced adsl lines
  2004-07-04 10:52 load balanced adsl lines Mark Coetser
@ 2004-07-05  2:30 ` Ming-Ching Tiew
  0 siblings, 0 replies; 2+ messages in thread
From: Ming-Ching Tiew @ 2004-07-05  2:30 UTC (permalink / raw)
  To: netfilter

[-- Attachment #1.1: Type: text/plain, Size: 1243 bytes --]

I struggled on this for a few months and I finally throw away the 
"multiple weight" default route method. FWMARK/CONNMARK 
is the way to go. More information, read this 

           http://www.geocities.com/mctiew/ffw/dual.htm

You may not want to use it for whatever reason you think
appropriate but please read the 'Introduction' where I 
explained how I failed badly using that method.

  ----- Original Message ----- 
  From: Mark Coetser 
  To: netfilter@lists.netfilter.org 
  Sent: Sunday, July 04, 2004 6:52 PM
  Subject: load balanced adsl lines

  Hi Ppl

  I have 5 adsl lines that after reading quite a bit i managed to get load balanced now abvoiusly it doesnt load balance evenly and this works on what routes are still in the routing cache. my question is my outbound masquerading had to be modified to use snat in iptables instead of just plain masquerading my outbound masquerading now works but my inbound port forwarding doesnt work would this be an iptables problem or a routing issue...

  i have opened all the relavent ports on each of the interfaces and I am not getting any logged denies the connection just never opens

  I am running the following

  debian woody

  kernel 2.6.6

[-- Attachment #1.2: Type: text/html, Size: 3381 bytes --]

[-- Attachment #2: InterScan_SafeStamp.txt --]
[-- Type: text/plain, Size: 250 bytes --]

****** Message from InterScan E-Mail VirusWall NT ******

** No virus found in attached file noname.htm
** No virus found in attached file noname.htm

This mail has been scanned by InterScan.
*****************     End of message     ***************

^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2004-07-05  2:30 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-07-04 10:52 load balanced adsl lines Mark Coetser
2004-07-05  2:30 ` Ming-Ching Tiew

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.