LARTC - Nov 2006 - Two uplinks, two networks and policy routing help requested

I am hoping that someone with more experience and knowledge than I can 
assist me in finding a solution ;)

We have a RedHat AS4 box with 5 interfaces. Two interfaces serve two 
different networks and two interfaces connect to two different uplinks. 
The fifth interface is our management interface.

Since a picture is worth a thousand words I attempted to come up with a 
diagram:

     http://studpup74.googlepages.com/networkproblem

(I did not want to post this image to the list :)

If anyone with this experience has a few moments to assist us, I would 
be very grateful. Let me know if you need additional information.

- John Douglass, Georgia Tech

You can accomplish this in two ways:
1. Put two routers on the place of this one and solve two internal networks
to see each other trough two routers with static route.

2. if two outgoing connections are to ISPs then solution can be with one
router but with BGP so two networks can go out with both ISP 

3 There is third solution also called source routing but this is not a
stable solution and can get you in major trouble.

-----Original Message-----
From: lartc-bounces@mailman.ds9a.nl [mailto:lartc-bounces@mailman.ds9a.nl]
On Behalf Of John Douglass
Sent: Monday, November 06, 2006 10:05 PM
To: lartc@mailman.ds9a.nl
Subject: [LARTC] Two uplinks, two networks and policy routing help requested

I am hoping that someone with more experience and knowledge than I can 
assist me in finding a solution ;)

We have a RedHat AS4 box with 5 interfaces. Two interfaces serve two 
different networks and two interfaces connect to two different uplinks. 
The fifth interface is our management interface.

Since a picture is worth a thousand words I attempted to come up with a 
diagram:

     http://studpup74.googlepages.com/networkproblem

(I did not want to post this image to the list :)

If anyone with this experience has a few moments to assist us, I would 
be very grateful. Let me know if you need additional information.

- John Douglass, Georgia Tech

_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

I''m not much of a expert, but I would try some of the following

I would try src routing

ip rule add fwmark 1 table network1
ip route add default via 128.61.111.242/241(depending on gateway) table network1
iptables -t mangle -A PREROUTING -s 128.61.110.0/24 -j MARK --set-mark 1


ip rule add fwmark 2 table network2
ip route add default via 199.77.254.106/105 table network2
iptables -t mangle -A PREROUTING -s 143.215.204.0/27 -j MARK --set-mark 2

this is just some samples, u can alot more in dept with src routing,
but I would try this first

u can also do dynamic routing with ospf and set your links costs if u
want to set priorities on links etc, otherwise go big with BGP routing

Like I said, im no expert , hope it helps

Sew




On 11/6/06, John Douglass <john.douglass@oit.gatech.edu>
wrote:
> I am hoping that someone with more experience and knowledge than I can
> assist me in finding a solution ;)
>
> We have a RedHat AS4 box with 5 interfaces. Two interfaces serve two
> different networks and two interfaces connect to two different uplinks.
> The fifth interface is our management interface.
>
> Since a picture is worth a thousand words I attempted to come up with a
> diagram:
>
>      http://studpup74.googlepages.com/networkproblem
>
> (I did not want to post this image to the list :)
>
> If anyone with this experience has a few moments to assist us, I would
> be very grateful. Let me know if you need additional information.
>
> - John Douglass, Georgia Tech
>
> _______________________________________________
> LARTC mailing list
> LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
>