Greg,
Check out the past archives not to far on June 5th, I put a post up
when I finally was able to do something similar to what you are wanting
to do. I think. I have two ISPs, two SDSL lines, separate IP blocks, and
two routers. I used a linux box as a second round of Nat and a load
balancer sort of. Although that is an option, but as mention in my post,
NAT in the Linux box is a must. The kernel must be patched, I used a
2.2.21 due to booting of a ZIP disk, and running my Linux router on
RAMDISK You can use a 2.4 but it must be patched, and run NAT.
The links you need are in my past post, and if you have questions I will
do my best to assist. Although keep in mind NAT issues are not really
for this list. That''s a netfilter mailing list issue. Due my use of a
2.2.21 kernel I could not use iptables, or at least I do not think I
can. I used ipchains as you will see in the post. So if you use a 2.4
kernel you will more than likely use iptables not ipchains.
I used only two connections, but you can use as many as you have
interfaces for. Also if you are not using other routers before the Linux
one than it will be a little easier Good luck.
On Wed, 2002-06-26 at 15:06, Greg Scott wrote:> I am trying to figure out how to do this: I''ve tried the howto but
just become
> hopelessly confused. (I don'' think this is a problem in the
howto, it''s a problem
> with my comprehension.)
>
> Anyway, here''s the scenario:
>
> Internal Linux Router/ 4 - T1 circuits to
Another
> Networks Firewall the Internet
Internet circuit
> | | | | | | | | |
|
> +-----------------+ | |
+------------+------+------+------+---------------+
> --------------------+ |
> ------------------------+
>
> There are really three internal networks for various departments. The
router/firewall
> will have 4 NICs.
>
> For one of the internal departments, I want the router to load-balance
outbound
> packets among those 4 T1 circuits, which will be connected to Cisco (I
think)
> routers. I want the other departments to all share that other Internet
circuit.
>
> And I need the ability to change this policy at will, so I can let other
departments
> use the combined T1s as needed.
>
> I think I can figure out how to route based on the source network, that all
makes
> sense in the how-to. I can set up different routing tables based on the
source IP
> address/network. It''s the load balancing that is making me crazy
- how do I put
> together a load-balancing mechanism for those combined T1s that makes
sense?
>
> Any advice or pointers?
>
> thanks
>
> - Greg Scott
> _______________________________________________
> LARTC mailing list / LARTC@mailman.ds9a.nl
> http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
>
--
Sincerely,
William L. Thomson Jr.
Obsidian-Studios, Inc.
439 Amber Way
Petaluma, Ca. 94952
Phone 707.766.9509
Fax 707.766.8989
http://www.obsidian-studios.com
--
Sincerely,
William L. Thomson Jr.
Support Group
Obsidian-Studios Inc.
439 Amber Way
Petaluma, Ca. 94952
Phone 707.766.9509
Fax 707.766.8989
http://www.obsidian-studios.com