LARTC - Jun 2002 - Failover with 2 ISP''s and one ethernet card? (fwd)

Simon,
        I have been working on a similar solution. To begin with you
need to
recompile the kernel with Julian''s patches that can be found at 

http://www.linuxvirtualserver.org/~julian/#routes

and then read

http://www.linuxvirtualserver.org/~julian/nano.txt

I have yet to actually get this to work. Although I know from others
that is does. My problem is I have two SDSL routers doing NAT instead of
the linux router doing nat. That is why I am still having problems with
Julian''s patches.

I am working on a double NAT solution but am having some problems I am
still trying to work out with NAT and 2.2 kernels. I am used to 2.4 and
iptables. Although ip route has some nice features that I have yet to
get to work. Like it''s nat feature. But there is still ipchains and the
other 2.2 utilities.

Julian has been very gratious to respond directly to emails I have sent
him. Hopefully I will have a working solution soon and when I do will
definetly document and post my results. So far it''s been a painful
learing process.

FYI, I am using a 2.2.21 kernel from kernel.org with the guts of the
Linux Router Project 2.9.8 with some other modifications.

Good luck, if you are able to achieve a working solution please post
your results. I may have a few questions as will others in the future.

Also you will need to setup split DNS here is another good link.

http://www.samag.com/documents/s=1824/sam0201h/0201h.htm

On Sat, 2002-06-01 at 16:23, Simon Matthews wrote:
> I should add that my box is running Redhat 6.2 with a 2.2.19 series 
> kernel (it runs the standard RH kernel, but I can re-compile from the 
> standard kernel sources if required).
> 
> Simon
> 
> ---------- Forwarded message ----------
> Date: Sat, 1 Jun 2002 16:21:59 -0700 (PDT)
> From: Simon Matthews <simon@paxonet.com>
> To: lartc@mailman.ds9a.nl
> Subject: Failover with 2 ISP''s and one ethernet card?
> 
> I am trying to figure out how to configure up a failover setup. I have 2 
> ISP''s:
> 1. Wireless -- up to 2MPS
> 2. Fractional T1 -  384Kbps
> 
> So, I want the wireless interface to be used in preference. The T1
> connection comes into a Cisco 1605R router and from there into my external
> subnet. The Wireless connection comes straight in (I have no control over
> the ISP''s router) to the external subnet.  The wireless ISP and
T1-ISP
> provide different IP addresses to me. Furthermore, the wireless ISP does 
> not provide any routing protocol data (RIP, OSPF, etc) into my subnet. 
> 
> My proxy/mail/DNS box has one physical interface, and I want to define 
> multiple aliases, one for the address  provided by each ISP. 
> 
> Furthermore, I want my proxy box to failover to using the T1 connection if 
> the wireless connection goes down. 
> 
> I have tried to configure this, but the iproute2 commands do not seem to 
> accept alias names for the device (eg. eth0:2).
> 
> Can someone tell me how I should configure this setup?
> 
> Thanks!
> Simon
> 
> 
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
> 
-- 
Sincerely,
William L. Thomson Jr.
Support Group
Obsidian-Studios Inc.
439 Amber Way
Petaluma, Ca. 94952
Phone  707.766.9509
Fax    707.766.8989
http://www.obsidian-studios.com

You completely missed what I was pointing you towards. I am not using or
talking about LVS at all. What I am talking about is alternative routes,
multiple gateways, and dead gateway detection for link failover.

From what you said initially and what you are saying below you and I are
in the same boat.

Once again, if you want to be able to use more than one internet
connection, Julian''s Linux patches apply. 

Granted there is more than just the patches provided on that page. I
tried to point you to the Linux routing section of that page.

If you read either the nano-howto.txt or the dgd.txt you would
understand why I sent you that way. 

Ignore the LVS stuff and pay attention to the Linux Patches section. It
has the patches for 2.4 and 2.2 kernels to properly use more than one
internet connection.

I can''t express enough that I have been trying to do for some time
exactly what you are. I just have to equal bandwidth connections and you
do not.

We both have seperate public IP blocks from each ISP that need to be
mapped back to single servers. So each server requires a minimum of two
Public IP''s or in other words. For each internet connection you want to
be able to use, each server will require at least 1 ip, per ISP.

Or if you have the money and the use go to ARIN and get a /20 network
some 4k+ globally routed IP''s and have your ISP forward to your own
block.

Then you can have a single Public IP per server.

Otherwise check out Julian''s patches and the .txt files. They are very
detailed and will give you a good over view.

Good luck.

On Sat, 2002-06-01 at 18:40, Simon Matthews wrote:
> On 1 Jun 2002, William L. Thomson Jr. wrote:
> 
> > Simon,
> >         I have been working on a similar solution. To begin with you
> > need to
> > recompile the kernel with Julian''s patches that can be found
at
> > 
> > http://www.linuxvirtualserver.org/~julian/#routes
> > 
> 
> William,
> 
> I don''t think the LVS project is addressing my problem. They are
adressing
> methods to make multiple Linux boxes appear as one box.  Their problem is 
> the reverse problem to mine. I want to make one box look like 2 boxes and 
> have it automatically use the best Internet connection -- where I define 
> best as: 1. Use the Wireless connection if available, 2. Use the T1 
> connection if the the wireless connection has failed. 
> 
> My critical applications are:
> 
> 1. Receive incoming email
> 2. Resolve DNS queries for my domain
> 3. Get outgoing packets to flow. 
> 
> For incoming email, I can specify 2 MX records for the 2 ISP-issues IP 
> addresses. Both will ultimately end up at the same machine. I can specify 
> the Wireless IP address as the highest priority. 
> 
> To resolve DNS queries, I can specify more than one IP address as the
> nameservers for my domain, again, both these may end up at the same
> machine, which has multiple IP addresses. I can specify the Wireless IP
> address as the highest priority
> 
> For outgoing packets, I don''t care about the source IP address, as
long as
> it is one of my 2 IP addresses and I would like to use the wireless IP 
> address if the link is up. 
> 
> Simon
> 
> 
> 
> 
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
> 
-- 
Sincerely,
William L. Thomson Jr.
Support Group
Obsidian-Studios Inc.
439 Amber Way
Petaluma, Ca. 94952
Phone  707.766.9509
Fax    707.766.8989
http://www.obsidian-studios.com

I should add that my box is running Redhat 6.2 with a 2.2.19 series 
kernel (it runs the standard RH kernel, but I can re-compile from the 
standard kernel sources if required).

Simon

---------- Forwarded message ----------
Date: Sat, 1 Jun 2002 16:21:59 -0700 (PDT)
From: Simon Matthews <simon@paxonet.com>
To: lartc@mailman.ds9a.nl
Subject: Failover with 2 ISP''s and one ethernet card?

I am trying to figure out how to configure up a failover setup. I have 2 
ISP''s:
1. Wireless -- up to 2MPS
2. Fractional T1 -  384Kbps

So, I want the wireless interface to be used in preference. The T1
connection comes into a Cisco 1605R router and from there into my external
subnet. The Wireless connection comes straight in (I have no control over
the ISP''s router) to the external subnet.  The wireless ISP and T1-ISP
provide different IP addresses to me. Furthermore, the wireless ISP does 
not provide any routing protocol data (RIP, OSPF, etc) into my subnet. 

My proxy/mail/DNS box has one physical interface, and I want to define 
multiple aliases, one for the address  provided by each ISP. 

Furthermore, I want my proxy box to failover to using the T1 connection if 
the wireless connection goes down. 

I have tried to configure this, but the iproute2 commands do not seem to 
accept alias names for the device (eg. eth0:2).

Can someone tell me how I should configure this setup?

Thanks!
Simon

On 1 Jun 2002, William L. Thomson Jr. wrote:
> Simon,
>         I have been working on a similar solution. To begin with you
> need to
> recompile the kernel with Julian''s patches that can be found at 
> 
> http://www.linuxvirtualserver.org/~julian/#routes
> 
William,

I don''t think the LVS project is addressing my problem. They are
adressing
methods to make multiple Linux boxes appear as one box.  Their problem is 
the reverse problem to mine. I want to make one box look like 2 boxes and 
have it automatically use the best Internet connection -- where I define 
best as: 1. Use the Wireless connection if available, 2. Use the T1 
connection if the the wireless connection has failed. 

My critical applications are:

1. Receive incoming email
2. Resolve DNS queries for my domain
3. Get outgoing packets to flow. 

For incoming email, I can specify 2 MX records for the 2 ISP-issues IP 
addresses. Both will ultimately end up at the same machine. I can specify 
the Wireless IP address as the highest priority. 

To resolve DNS queries, I can specify more than one IP address as the
nameservers for my domain, again, both these may end up at the same
machine, which has multiple IP addresses. I can specify the Wireless IP
address as the highest priority

For outgoing packets, I don''t care about the source IP address, as long
as
it is one of my 2 IP addresses and I would like to use the wireless IP 
address if the link is up. 

Simon

William,

I will have a look again! 

Simon

On 1 Jun 2002, William L. Thomson Jr. wrote:
> You completely missed what I was pointing you towards. I am not using or
> talking about LVS at all. What I am talking about is alternative routes,
> multiple gateways, and dead gateway detection for link failover.
> 
> >From what you said initially and what you are saying below you and I
are
> in the same boat.
> 
> Once again, if you want to be able to use more than one internet
> connection, Julian''s Linux patches apply. 
> 
> Granted there is more than just the patches provided on that page. I
> tried to point you to the Linux routing section of that page.
> 
> If you read either the nano-howto.txt or the dgd.txt you would
> understand why I sent you that way. 
> 
> Ignore the LVS stuff and pay attention to the Linux Patches section. It
> has the patches for 2.4 and 2.2 kernels to properly use more than one
> internet connection.
> 
> I can''t express enough that I have been trying to do for some time
> exactly what you are. I just have to equal bandwidth connections and you
> do not.
> 
> We both have seperate public IP blocks from each ISP that need to be
> mapped back to single servers. So each server requires a minimum of two
> Public IP''s or in other words. For each internet connection you
want to
> be able to use, each server will require at least 1 ip, per ISP.
> 
> Or if you have the money and the use go to ARIN and get a /20 network
> some 4k+ globally routed IP''s and have your ISP forward to your
own
> block.
> 
> Then you can have a single Public IP per server.
> 
> Otherwise check out Julian''s patches and the .txt files. They are
very
> detailed and will give you a good over view.
> 
> Good luck.
> 
> On Sat, 2002-06-01 at 18:40, Simon Matthews wrote:
> > On 1 Jun 2002, William L. Thomson Jr. wrote:
> > 
> > > Simon,
> > >         I have been working on a similar solution. To begin with
you
> > > need to
> > > recompile the kernel with Julian''s patches that can be
found at
> > > 
> > > http://www.linuxvirtualserver.org/~julian/#routes
> > > 
> > 
> > William,
> > 
> > I don''t think the LVS project is addressing my problem. They
are adressing
> > methods to make multiple Linux boxes appear as one box.  Their problem
is
> > the reverse problem to mine. I want to make one box look like 2 boxes
and
> > have it automatically use the best Internet connection -- where I
define
> > best as: 1. Use the Wireless connection if available, 2. Use the T1 
> > connection if the the wireless connection has failed. 
> > 
> > My critical applications are:
> > 
> > 1. Receive incoming email
> > 2. Resolve DNS queries for my domain
> > 3. Get outgoing packets to flow. 
> > 
> > For incoming email, I can specify 2 MX records for the 2 ISP-issues IP
> > addresses. Both will ultimately end up at the same machine. I can
specify
> > the Wireless IP address as the highest priority. 
> > 
> > To resolve DNS queries, I can specify more than one IP address as the
> > nameservers for my domain, again, both these may end up at the same
> > machine, which has multiple IP addresses. I can specify the Wireless
IP
> > address as the highest priority
> > 
> > For outgoing packets, I don''t care about the source IP
address, as long as
> > it is one of my 2 IP addresses and I would like to use the wireless IP
> > address if the link is up. 
> > 
> > Simon
> > 
> > 
> > 
> > 
> > _______________________________________________
> > LARTC mailing list / LARTC@mailman.ds9a.nl
> > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
> > 
>