[ previous ] [ next ] [ threads ]
 
 From:  "RP Smith" <rpsmith at hotmail dot com>
 To:  m0n0wall at lists dot m0n0 dot ch
 Subject:  [m0n0wall] 2 wans one m0n0wall
 Date:  Wed, 27 Oct 2004 20:31:24 -0500
If you assign two gateways via your own DHCP server, the client won't switch 
to the alternate one unless it can't reach the primary one.  So as long as 
the firewall is on, regardless of its WAN state, the client will continue to 
use it.

Roy...

>From: "James W. McKeand" <james at mckeand dot biz>
>To: <pmok at optushome dot com dot au>
>CC: <m0n0wall at lists dot m0n0 dot ch>
>Subject: RE: [m0n0wall] 2 wans one m0n0wall
>Date: Wed, 27 Oct 2004 09:35:22 -0400
>
>Your email quandary is probably because the ISPs will not let you send
>email if you are not using their connection. I saw this a lot before
>the ISPs I deal with started using authentication to restrict "free"
>use of their SMTP servers (think open relay). Most of the ISPs I deal
>with now allow you to send using a connection from another ISP, but
>you may have to authenticate first...
>
>Could you use both ISPs DNS as forwarders on your own DNS? Assign your
>own DNS to your client machines. The local DNS will forward to the
>first one on the list then try the next one if no response. I would
>mix them up: ISP1a, ISP2a, ISP1b, ISP2b. But, there may be a delay
>when one connection is down - you would be waiting for a timeout from
>the first DNS.
>
>I can see that you could assign two gateways via your own DHCP. But I
>am not sure how the client machines would react to the first gateway
>being non-responsive. To manually make the change you should only have
>to change the gateway.
>
>None of this would do anything for inbound traffic.
>
>_________________________________
>James W. McKeand
>
>
>-----Original Message-----
>From: pmok at optushome dot com dot au [mailto:pmok at optushome dot com dot au]
>Sent: Wednesday, October 27, 2004 1:49 AM
>To: m0n0wall at lists dot m0n0 dot ch
>Subject: Re: [m0n0wall] 2 wans one m0n0wall
>
>Yeah, load-balancing and failover isn't possible as it
>hasn't been implemented. I'm not sure it ever will be.
>Its quite hard to implement with minimal issues.
>Someone has to take the time to properly implement
>it.
>
>I do have two connections, but I have little experience
>when it comes to developing on the FreeBSD platform.
>
>What I did was use two M0n0Walls instead.
>I have two cable connections at home, and each go
>to a M0n0Wall setup, but on the LAN side of each,
>they are hooked up on the same switch.
>
>So...
>
>M0n0Wall 1 => 192.168.0.10
>M0n0Wall 2 => 192.168.0.20
>
>Client PCs => 192.168.0.xx
>Where xx = from 30 to whatever.
>
>Depending on which ISP I want to connect
>to on each client, I manually set DNS, Gateway, and
>IP address.
>
>Interestingly, I can receive emails from one ISP while
>connected to the other. Say if I connect to ISP 1, I can
>receive email from my email account from ISP 2, but can't
>send.
>
>I know Linux can be made to do this "Load Balancing",
>but its a bit of a "hack job".
>
>FreeBSD and OpenBSD can do it as well, but the
>methods used are very primitive and only give you
>basic load balancing options.
>
>None are as featured as commercial Dual-WAN
>routers.
>
>Here's a informative thread I made on this topic
>=> http://forums.techwatch.com.au/viewtopic.php?t=3626
>(It covers how to do Load Balancing in Linux, FreeBSD and
>OpenBSD).
>
>Regards
>-stmok
>
>
>
>----- Original Message -----
>From: "sylikc" <sylikc at gmail dot com>
>To: "Adrian Padilla" <publicwi dash fi at speakeasy dot net>
>Cc: "mono" <m0n0wall at lists dot m0n0 dot ch>
>Sent: Wednesday, October 27, 2004 3:34 AM
>Subject: Re: [m0n0wall] 2 wans one m0n0wall
>
>
> > Adrian,
> >
> > > Is it poss to have 2 wans inputs from 2 different modems and one
>m0n0wall ?
> > >
> > > On wan one I will have 1 ip, and on wan 2 I will have 2 ips
> > >
> > > Is it poss to have m0n0 handle this
> >
> > AFAIK, if you have tried searching through the list for "load
> > balancing" (I suppose that's what you would want with 2 WANs
>anyway),
> > it is not yet possible.
> >
> >
>---------------------------------------------------------------------
> > To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> > For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
> >
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
>
>---------------------------------------------------------------------
>To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
>For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>