From mboxrd@z Thu Jan 1 00:00:00 1970 From: "Ming-Ching Tiew" Subject: Re: load balanced adsl lines Date: Mon, 5 Jul 2004 10:30:53 +0800 Sender: netfilter-admin@lists.netfilter.org Message-ID: <019c01c46238$181ab2b0$0100a8c0@redtone.com> References: <01dc01c461b4$f0828670$fe00000a@citadel> Mime-Version: 1.0 Content-Type: multipart/mixed; boundary="----=_NextPartTM-000-5682ed8e-13d1-46fa-a098-75583c4947a7" Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: netfilter@lists.netfilter.org This is a multi-part message in MIME format. ------=_NextPartTM-000-5682ed8e-13d1-46fa-a098-75583c4947a7 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0199_01C4627B.263AE570" ------=_NextPart_000_0199_01C4627B.263AE570 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable I struggled on this for a few months and I finally throw away the=20 "multiple weight" default route method. FWMARK/CONNMARK=20 is the way to go. More information, read this=20 http://www.geocities.com/mctiew/ffw/dual.htm You may not want to use it for whatever reason you think appropriate but please read the 'Introduction' where I=20 explained how I failed badly using that method. ----- Original Message -----=20 From: Mark Coetser=20 To: netfilter@lists.netfilter.org=20 Sent: Sunday, July 04, 2004 6:52 PM Subject: load balanced adsl lines Hi Ppl I have 5 adsl lines that after reading quite a bit i managed to get = load balanced now abvoiusly it doesnt load balance evenly and this works = on what routes are still in the routing cache. my question is my = outbound masquerading had to be modified to use snat in iptables instead = of just plain masquerading my outbound masquerading now works but my = inbound port forwarding doesnt work would this be an iptables problem or = a routing issue... i have opened all the relavent ports on each of the interfaces and I = am not getting any logged denies the connection just never opens I am running the following debian woody kernel 2.6.6 ------=_NextPart_000_0199_01C4627B.263AE570 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
 
I struggled on this for a few months = and I finally=20 throw away the
"multiple weight" default route method. = FWMARK/CONNMARK
is the way to go. More information, read this
 
 
You may not want to use it for whatever = reason you=20 think
appropriate but please read the = 'Introduction'=20 where I
explained how I failed badly using that = method.
 
 
----- Original Message -----
From:=20 Mark = Coetser
To: netfilter@lists.netfilter.o= rg=20
Sent: Sunday, July 04, 2004 = 6:52 PM
Subject: load balanced adsl = lines

Hi Ppl
 
I have 5 adsl lines that after = reading quite a=20 bit i managed to get load balanced now abvoiusly it doesnt load = balance evenly=20 and this works on what routes are still in the routing cache. my = question is=20 my outbound masquerading had to be modified to use snat in iptables = instead of=20 just plain masquerading my outbound masquerading now works but my = inbound port=20 forwarding doesnt work would this be an iptables problem or a routing=20 issue...
 
i have opened all the relavent ports = on each of=20 the interfaces and I am not getting any logged denies the connection = just=20 never opens
 
I am running the = following
 
debian woody
 
kernel 2.6.6
 
------=_NextPart_000_0199_01C4627B.263AE570-- ------=_NextPartTM-000-5682ed8e-13d1-46fa-a098-75583c4947a7 Content-Type: text/plain; name="InterScan_SafeStamp.txt" Content-Transfer-Encoding: 7bit Content-Disposition: attachment; filename="InterScan_SafeStamp.txt" ****** Message from InterScan E-Mail VirusWall NT ****** ** No virus found in attached file noname.htm ** No virus found in attached file noname.htm This mail has been scanned by InterScan. ***************** End of message *************** ------=_NextPartTM-000-5682ed8e-13d1-46fa-a098-75583c4947a7--