This scenario is very uncommon. I have a Fedora box with 3 NICs, and for security reasons I'll name all the Public Addresses with 172.16.x.x IPs, and Private IPs will be 192.168.0.x: eth0: ISP1-172.16.10.2/30 eth0.1: ISP2-172.16.20.2/30 eth1: Users-192.168.0.62/26 eth2: Servers-172.16.30.1/28 Eth0 goes to a hub that has both ISPs connected to it. Eth1 (Users Network) uses DHCP and it is currently doing NAT and the default gateway for this NIC is 172.16.10.1 (wich is one of the ISP1s end), the other NIC, Eth2, has a pool of servers with Public IP Addresses that use the other ISP connection to go out by having this NIC with the gateway pointing to 172.16.20.1 (the ISP2 has a static routing for this to work on their side). Also I just got an Extra ISP uplink (not currently used) wich i just want as a backup for the servers in case the other one fails.
What I'd like, is to have this same box running Vyatta Community 3. And also to use VLANS Instead of whole NICs/Ports. I managed to configure the VLANS on the two VLAN capable NICs (wich also are GIGABIT NICs) like this: eth1 ID16- ISP1 ID17- ISP2 ID18- ISP3 eth2 ID 10-Servers ID 20-Users All the Vif had the corresponding IPs. The vyatta server sees all the machines (users, servers, and all the ISPs end) and the VLAN configuration was working fine with my cisco 2950 switch. However, NAT did not work fine and the routing i think wasnt working either. Could you help me to figure out a configuration for this type of scenario? The problem is For NAT it asks for an Interface and this is Eth1 for the ISPs, but i need it to use a specific ISP, so how do i define it to use a vif instead of a physical address like eth1? Also i'm not sure if I have to tell the system something so it can route all the traffic on the different networks. I'm very new with vyatta, i managed to use it a couple of months ago and it worked fine using several NICs. But now i need it to work with VLANS. Also, i'll need help with the DHCP server because i think it will also ask me for an interface and i need it to use a vif instead, i dont know if this would work but if it does, this will save me a cisco1811 buy. I can only try this on Saturdays because it's the only day the network doesn't have high usage. regards, rodrigo _______________________________________________ Vyatta-users mailing list Vyatta-users@mailman.vyatta.com http://mailman.vyatta.com/mailman/listinfo/vyatta-users
