Hi, I''m using Shorewall 4.2.1 in a "multiple ISP" scenario, currently with 2 DSL lines attached as ppp0 and ppp1. I''ve followed the guide to set it up and it works, however some questions remain. Please see http://raq550.dyndns.org/~christian/dump.txt.gz for configuration details. (1) How is traffic split between the two lines? Based on what? (2) The doc says to add masq entries between the balanced lines, which I didn''t do yet. My ppp0 and ppp1 interfaces don''t have a static IP, do I need to use a script to detect the current IP? (3) What happens when a line goes down unexpectedly? How do I recover from that? (4) We''re planning to add two more DSL lines. The example for 3 lines is a bit unclear in terms of how to deal with one more line. Can anybody help? Kind regards, Christian ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
Christian Aust wrote:> Hi, > > I''m using Shorewall 4.2.1 in a "multiple ISP" scenario, currently with > 2 DSL lines attached as ppp0 and ppp1. I''ve followed the guide to set > it up and it works, however some questions remain. Please see http://raq550.dyndns.org/~christian/dump.txt.gz > for configuration details. > > (1) How is traffic split between the two lines? Based on what?Weighted round-robin where the ''weight'' is the number following ''balance='' (default 1).> (2) The doc says to add masq entries between the balanced lines, which > I didn''t do yet. My ppp0 and ppp1 interfaces don''t have a static IP, > do I need to use a script to detect the current IP?You don''t need a script but you need to store the IP address of each interface in a shell variable in /etc/shorewall/params as described in Shorewall FAQ 2. As I pointed out in another post just in the last several days, in addition to find_first_interface_address(), there is a find_first_interface_address_if_any() that can be used with optional interfaces.> (3) What happens when a line goes down unexpectedly? How do I recover > from that?If you have marked all of the interfaces as ''optional'' in /etc/shorewall/interfaces, then all you need to do is restart Shorewall.> (4) We''re planning to add two more DSL lines. The example for 3 lines > is a bit unclear in terms of how to deal with one more line. Can > anybody help?I don''t know what else to tell you other than what I wrote in that article. -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________ ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
Tom Eastep wrote:> Christian Aust wrote: >> Hi, >> >> I''m using Shorewall 4.2.1 in a "multiple ISP" scenario, currently with >> 2 DSL lines attached as ppp0 and ppp1. I''ve followed the guide to set >> it up and it works, however some questions remain. Please see http://raq550.dyndns.org/~christian/dump.txt.gz >> for configuration details. >> >> (1) How is traffic split between the two lines? Based on what? > > Weighted round-robin where the ''weight'' is the number following > ''balance='' (default 1). > >> (2) The doc says to add masq entries between the balanced lines, which >> I didn''t do yet. My ppp0 and ppp1 interfaces don''t have a static IP, >> do I need to use a script to detect the current IP? > > You don''t need a script but you need to store the IP address of each > interface in a shell variable in /etc/shorewall/params as described in > Shorewall FAQ 2. As I pointed out in another post just in the last > several days, in addition to find_first_interface_address(), there is a > find_first_interface_address_if_any() that can be used with optional > interfaces.I just looked and the Multi-ISP article (http://www.shorewall.net/Documentation_Index.html) describes how to do that. -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________ ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/
Tom Eastep wrote:>>> (1) How is traffic split between the two lines? Based on what? >> Weighted round-robin where the ''weight'' is the number following >> ''balance='' (default 1).Note also that once a connection is assigned to a line, all traffic associated with that connection goes over that line. This isn''t bonding. -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________ ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer''s challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/