LARTC - May 2004 - Multipath Connection problem on RH-8.0

Dear List.

I try to build multipath connection w/ load balance to internet with two 
different gateway;
My system is RH-8.0 with  iproute-2.4.7-7.90.1.rpm and Kernel-2.4.26 
(patching with Julian A. patch),and follow guide from  
http://www.linuxvirtualserver.org/~julian/nano.txt,
The problem is;
when i try to connect to Internet form gateway machine it;s success , 
but  only one interface is active, no load balancing at all ,
This is my default table
#ip r ls table DEF
default  proto static
        nexthop via 172.16.0.1  dev eth0 weight 256 dead onlink pervasive
        nexthop via 192.168.0.1  dev eth1 weight 1
I search the list about this error, and found that i shall use the 
upgrade version of iproute2, and i compile that too.
but with same config, and new iproute2 i can''t connect to internet now.
please be advice, what wrong with my config (attach), and what version 
of linux should work ?

regrads

Hello,

On Wed, 12 May 2004, Muhammad Reza wrote:
> default  proto static
>         nexthop via 172.16.0.1  dev eth0 weight 256 dead onlink pervasive
>         nexthop via 192.168.0.1  dev eth1 weight 1
> I search the list about this error, and found that i shall use the
> upgrade version of iproute2, and i compile that too.
> but with same config, and new iproute2 i can''t connect to internet
now.
> please be advice, what wrong with my config (attach), and what version
> of linux should work ?
	Can you check the example ''ip route get'' commands and
"2.4 Keeping them alive" from nano.txt. Make sure after upgrading
iproute2 that your nexthops are not dead. Also, list you rules
and routes and make sure they are valid, I see your commands but
I do not know which of them are accepted from the kernel.

Regards

--
Julian Anastasov <ja@ssi.bg>
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Julian Anastasov wrote:
>	Hello,
>
>On Wed, 12 May 2004, Muhammad Reza wrote:
>
>  
>
>>default  proto static
>>        nexthop via 172.16.0.1  dev eth0 weight 256 dead onlink
pervasive
>>        nexthop via 192.168.0.1  dev eth1 weight 1
>>I search the list about this error, and found that i shall use the
>>upgrade version of iproute2, and i compile that too.
>>but with same config, and new iproute2 i can''t connect to
internet now.
>>please be advice, what wrong with my config (attach), and what version
>>of linux should work ?
>>    
>>
>
>	Can you check the example ''ip route get'' commands and
>"2.4 Keeping them alive" from nano.txt. Make sure after upgrading
>iproute2 that your nexthops are not dead. Also, list you rules
>and routes and make sure they are valid, I see your commands but
>I do not know which of them are accepted from the kernel.
>
>Regards
>
>--
>Julian Anastasov <ja@ssi.bg>
>
>  
>
now i downgrade to rh-7.2 (2.4.20-w/ julian patch)and iproute version 
iproute2-ss010824.
but still cant do multipath routing.
this is my trace with ip route get;
[root@firewall root]# ip route get 202.138.253.17
202.138.253.17 via 172.16.0.1 dev eth0 src 172.16.0.232
cache mtu 1500 advmss 1460
[root@firewall root]# ip route get 202.138.253.17 from 192.168.0.2
202.138.253.17 from 192.168.0.2 via 192.168.0.1 dev eth1
cache mtu 1500 advmss 1460
[root@firewall root]# ip route get 202.138.253.17 from 172.16.0.232
202.138.253.17 from 172.16.0.232 via 172.16.0.1 dev eth0
cache mtu 1500 advmss 1460
[root@firewall root]# ip route list table main
192.168.0.0/30 dev eth1 proto kernel scope link src 192.168.0.2
172.16.0.0/24 dev eth0 scope link
10.10.10.0/24 dev eth2 scope link
127.0.0.0/8 dev lo scope link
[root@firewall root]# ip route list table MRA
default via 172.16.0.1 dev eth0 proto static src 172.16.0.232
prohibit default proto static metric 1
[root@firewall root]# ip route list table DEF
default proto static
nexthop via 172.16.0.1 dev eth0 weight 1
nexthop via 192.168.0.1 dev eth1 weight 1

with this configuration i still couldn connect to internet

how to debug and solve this problem... ?
please be advice..

regards
reza







_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Hello,

	To all: do you have some working script(s) that we can
recommend for setups with 2 or 3 uplinks in multipath route? Then we
can link them to the web page as reference.

On Thu, 13 May 2004, Muhammad Reza wrote:
> now i downgrade to rh-7.2 (2.4.20-w/ julian patch)and iproute version
> iproute2-ss010824.
> but still cant do multipath routing.
	Then can you explain what you learned from "2.4 Keeping them alive"
and what you have to keep the state for each GW from the multipath route
valid?
> this is my trace with ip route get;
> [root@firewall root]# ip route get 202.138.253.17
> 202.138.253.17 via 172.16.0.1 dev eth0 src 172.16.0.232
> cache mtu 1500 advmss 1460
> [root@firewall root]# ip route get 202.138.253.17 from 192.168.0.2
> 202.138.253.17 from 192.168.0.2 via 192.168.0.1 dev eth1
> cache mtu 1500 advmss 1460
> [root@firewall root]# ip route get 202.138.253.17 from 172.16.0.232
> 202.138.253.17 from 172.16.0.232 via 172.16.0.1 dev eth0
> cache mtu 1500 advmss 1460
> [root@firewall root]# ip route list table main
> 192.168.0.0/30 dev eth1 proto kernel scope link src 192.168.0.2
	This is strange:
> 172.16.0.0/24 dev eth0 scope link
> 10.10.10.0/24 dev eth2 scope link
	It means your settings are not created from script.
Also, the script does not bring dev eth0 up, there is a missing
"up".
> 127.0.0.0/8 dev lo scope link
> [root@firewall root]# ip route list table MRA
> default via 172.16.0.1 dev eth0 proto static src 172.16.0.232
> prohibit default proto static metric 1
	What do you have in table ADSL?

	Can you provide output from:

ip addr
ip rule
ip route list table all
> [root@firewall root]# ip route list table DEF
> default proto static
> nexthop via 172.16.0.1 dev eth0 weight 1
> nexthop via 192.168.0.1 dev eth1 weight 1
>
> with this configuration i still couldn connect to internet
	From where? What shows tcpdump -ln ... ?
> regards
> reza
Regards

--
Julian Anastasov <ja@ssi.bg>
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Hello Julian,

Thursday, May 13, 2004, 9:23:27 AM, you wrote:


JA> 	Hello,

JA> 	To all: do you have some working script(s) that we can
JA> recommend for setups with 2 or 3 uplinks in multipath route? Then we
JA> can link them to the web page as reference.
[cut]
I''ve posted one in 2 links version. Now I''m using slightly
extended
version for 4 links with policy routing :)

http://mailman.ds9a.nl/pipermail/lartc/2003q4/010372.html


-- 
Best regards,
 Robert                            mailto:rkurjata@ire.pw.edu.pl

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

Hello,

On Thu, 13 May 2004, Robert Kurjata wrote:
> JA> 	To all: do you have some working script(s) that we can
> JA> recommend for setups with 2 or 3 uplinks in multipath route? Then we
> JA> can link them to the web page as reference.
> [cut]
> I''ve posted one in 2 links version. Now I''m using
slightly extended
> version for 4 links with policy routing :)
	Thank you, it is now linked. May be in the following days
I''ll try to create advanced version.
> http://mailman.ds9a.nl/pipermail/lartc/2003q4/010372.html
Regards

--
Julian Anastasov <ja@ssi.bg>
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/

After some upgrading (RH-9.0-2.4.26-Julian Patch and  iproute2-ss020116) 
and re-configuration on network, amd learned from "2.4 Keeping them 
Alive" now i can seem can establishmed connection to internet w/ load 
balanced, thanks..doe a while, cause i have do some natting to my local 
network.

this my ip route show:
[root@firewall root]# ip route list table all
default via 172.16.0.1 dev eth0  table 201  proto static  src 172.16.0.232
prohibit default  table 201  proto static  metric 1
default via 10.10.10.1 dev eth1  table 202  proto static  src 10.10.10.2
prohibit default  table 202  proto static  metric 1
default  table 222  proto static
       nexthop via 10.10.10.1  dev eth1 weight 1
       nexthop via 172.16.0.1  dev eth0 weight 1
10.10.10.0/30 dev eth1  proto kernel  scope link  src 10.10.10.2
172.16.0.0/24 dev eth0  proto kernel  scope link  src 172.16.0.232
192.168.0.0/24 dev eth2  proto kernel  scope link  src 192.168.0.1
127.0.0.0/8 dev lo  scope link
broadcast 10.10.10.3 dev eth1  table local  proto kernel  scope link  
src 10.10.10.2
local 10.10.10.2 dev eth1  table local  proto kernel  scope host  src 
10.10.10.2
broadcast 192.168.0.255 dev eth2  table local  proto kernel  scope link  
src 192.168.0.1
broadcast 127.255.255.255 dev lo  table local  proto kernel  scope link  
src 127.0.0.1
broadcast 10.10.10.0 dev eth1  table local  proto kernel  scope link  
src 10.10.10.2
broadcast 172.16.0.0 dev eth0  table local  proto kernel  scope link  
src 172.16.0.232
local 192.168.0.1 dev eth2  table local  proto kernel  scope host  src 
192.168.0.1
broadcast 192.168.0.0 dev eth2  table local  proto kernel  scope link  
src 192.168.0.1
local 172.16.0.232 dev eth0  table local  proto kernel  scope host  src 
172.16.0.232
broadcast 172.16.0.255 dev eth0  table local  proto kernel  scope link  
src 172.16.0.232
broadcast 127.0.0.0 dev lo  table local  proto kernel  scope link  src 
127.0.0.1
local 127.0.0.1 dev lo  table local  proto kernel  scope host  src 
127.0.0.1
local 127.0.0.0/8 dev lo  table local  proto kernel  scope host  src 
127.0.0.1

and my this is the script that i use; (thanks to why)


include <stdio.h>
#include <unistd.h>

int main ()

{
system ("ip link set eth0 up");
system ("ip addr flush dev eth0");
system ("ip addr add 172.16.0.232/24 brd 172.16.0.255 dev eth0");

system ("ip rule add prio 50 table main");
system ("ip route del default table main 2>/dev/null");

system ("ip link set eth1 up");
system ("ip addr flush dev eth1");
system ("ip addr add 10.10.10.2/30 brd 10.10.10.3 dev eth1");

system ("ip link set eth2 up");
system ("ip addr flush dev eth2");
system ("ip addr add 192.168.0.1/24 brd 192.168.0.255 dev eth2");

system ("ip rule add prio 201 from 172.16.0.232/24 table 201");
system ("ip route add default via 172.16.0.1 dev eth0 src 172.16.0.232 
proto static table 201");
system ("ip route append prohibit default table 202 metric 1 proto 
static");

system ("ip rule add prio 202 from 10.10.10.2/30 table 202");
system ("ip route add default via 10.10.10.1 dev eth1 src 10.10.10.2 
proto static table 202");
system ("ip route append prohibit default table 201 metric 1 proto 
static");

system ("ip rule add prio 222 table 222");
system ("ip route add default table 222 proto static nexthop via 
10.10.10.1 dev eth1 nexthop via 172.16.0.1 dev eth0");

printf("-[ Net Interfaces are Activated ]-\n");
}

talk to u later...


thanks and best regards
reza


Julian Anastasov wrote:
>     Hello,
>
>     To all: do you have some working script(s) that we can
> recommend for setups with 2 or 3 uplinks in multipath route? Then we
> can link them to the web page as reference.
>
> On Thu, 13 May 2004, Muhammad Reza wrote:
>
>  
>
>> now i downgrade to rh-7.2 (2.4.20-w/ julian patch)and iproute version
>> iproute2-ss010824.
>> but still cant do multipath routing.
>>   
>
>
>     Then can you explain what you learned from "2.4 Keeping them
alive"
> and what you have to keep the state for each GW from the multipath route
> valid?
>
>  
>
>> this is my trace with ip route get;
>> [root@firewall root]# ip route get 202.138.253.17
>> 202.138.253.17 via 172.16.0.1 dev eth0 src 172.16.0.232
>> cache mtu 1500 advmss 1460
>> [root@firewall root]# ip route get 202.138.253.17 from 192.168.0.2
>> 202.138.253.17 from 192.168.0.2 via 192.168.0.1 dev eth1
>> cache mtu 1500 advmss 1460
>> [root@firewall root]# ip route get 202.138.253.17 from 172.16.0.232
>> 202.138.253.17 from 172.16.0.232 via 172.16.0.1 dev eth0
>> cache mtu 1500 advmss 1460
>> [root@firewall root]# ip route list table main
>> 192.168.0.0/30 dev eth1 proto kernel scope link src 192.168.0.2
>>   
>
>
>     This is strange:
>
>  
>
>> 172.16.0.0/24 dev eth0 scope link
>> 10.10.10.0/24 dev eth2 scope link
>>   
>
>
>     It means your settings are not created from script.
> Also, the script does not bring dev eth0 up, there is a missing
> "up".
>
>  
>
>> 127.0.0.0/8 dev lo scope link
>> [root@firewall root]# ip route list table MRA
>> default via 172.16.0.1 dev eth0 proto static src 172.16.0.232
>> prohibit default proto static metric 1
>>   
>
>
>     What do you have in table ADSL?
>
>     Can you provide output from:
>
> ip addr
> ip rule
> ip route list table all
>
>  
>
>> [root@firewall root]# ip route list table DEF
>> default proto static
>> nexthop via 172.16.0.1 dev eth0 weight 1
>> nexthop via 192.168.0.1 dev eth1 weight 1
>>
>> with this configuration i still couldn connect to internet
>>   
>
>
>     From where? What shows tcpdump -ln ... ?
>
>  
>
>> regards
>> reza
>>   
>
>
> Regards
>
> -- 
> Julian Anastasov <ja@ssi.bg>
>
>  
>


_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/