Hi All,
I have the following configuration:
* three internet connection with different provider
* OpenBSD 4.1 as the firewall
* One DMZ zone
* One internal zone.
I was able to use loadbalancing to connect internal to the
internet using two connection.
The problem I have is that I will not be able to connect from
the remote site to the other two internet interface. The problem
is with mpath, it seem that the response is send to the other
interface.
this is the configuration:
0. i am using all adsl link, which the adsl router will nat
0a. 125.125.125.1 for link1
0b. 125.125.122.3 for link2
0c. 125.125.133.200 for link3 (all are just an example).
1. ste0 inet 192.168.255.2 255.255.255.252
2. ste1 inet 192.168.255.6 255.255.255.252
3. ste2 inet 192.168.255.10 255.255.255.252
4. route add default 192.168.255.1
5. route add default 192.168.255.5 -mpath
6. route add default 192.168.255.9 -mpath
7. in OpenBSD 4.1 (that is why I switch to this version, because
in man it read:
The optional -mpath modifier needs to be specified with the add command
to be able to enter multiple gateways for the same destination address
(multipath). When multiple routes exist for a destination, one route is
selected based on the source address of the packet. The sysctl(8) vari-
ables net.inet.ip.multipath and net.inet6.ip6.multipath are used to con-
trol multipath routing. If set to 1, multiple routes are used equally;
if set to 0, the first route selected will be used for subsequent packets
to that destination regardless of source.
I setup
net.inet.ip.multipath=1
8. it seem that i can't any of the interface. There is a response, however it
send to the different interface and drop by the adsl.
Any solutions?
Thanks,
Riwan
