From owner-freebsd-questions Fri Feb 21 8:49: 2 2003 Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 484FF37B401 for ; Fri, 21 Feb 2003 08:49:00 -0800 (PST) Received: from mail1.mycomputerease.com (ztown1-1-211.adsl.one.net [216.23.32.211]) by mx1.FreeBSD.org (Postfix) with ESMTP id 4300143FB1 for ; Fri, 21 Feb 2003 08:48:59 -0800 (PST) (envelope-from kevinr@mycomputerease.com) Received: from mycomputerease.com (localhost.mycomputerease.com [127.0.0.1]) by mail1.mycomputerease.com (8.12.3/8.12.3) with ESMTP id h1LGjqcc042401 for ; Fri, 21 Feb 2003 11:45:52 -0500 (EST) (envelope-from kevinr@mycomputerease.com) From: "Kevin D Re" To: freebsd-questions@FreeBSD.ORG Subject: Changing ISPs with out much interruption. Date: Fri, 21 Feb 2003 11:45:52 -0500 Message-Id: <20030221164552.M88@mycomputerease.com> X-Mailer: Open WebMail 1.81 20021212 X-OriginatingIP: 192.168.2.251 (kevinr) MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG My Setup /--- FreeBSD2 (Web,ftp,ssh) ISPA ---\ |--- FreeBSD3 (Webmail,mail,ssh) HUB1 --- (xl0) FreeBSD1 (fxp0)--- HUB2 ISPB ---/ \--- Firewall --- internal network FreeBSD2 192.168.2.1 FreeBSD3 192.168.2.2 x10 ip addresses: ISPA 10.0.0.2, 10.0.0.3, etc, gateway 10.0.0.1 This is the current ISP which all internal traffic goes out. ISPB 20.0.0.2, 20.0.0.3, etc, gateway 20.0.0.2 This is where I want all internal traffic to go. These ip addresses are assigned to the outside network card (xl0) about 8 total, 4 ip addresses for each ISP. I have setup successful to have all incoming traffic using ISPB The current default route is 10.0.0.1 I do a `route change default 20.0.0.2` which I would think tell all out going traffic to use ISPB but it don't. All traffic stops and I can from FreeBSD1 ping both ISP gateways and the other 2 FreeBSD boxes. I have connected a computer to HUB1 and setup the ip address and gateway for ISPB and it works fine. FreeBSD1 is Ver 4.7 and using ipfw and natd for debugging I set ipfw rules (rc.firewall) like this: fwcmd = "/sbin/ipfw" $fwcmd add divert natd all from any to any via fxp0 $fwcmd add pass ip from any to any The nat.conf is setup like this: redirect_port tcp 192.168.2.1:80 10.0.0.2:80 redirect_port tcp 192.168.2.1:80 20.0.0.2:80 redirect_port tcp 192.168.2.2:80 10.0.0.3:80 redirect_port tcp 192.168.2.2:80 20.0.0.3:80 etc for each service. To summarize the problem: I am try to use ISPB instead of ISPA as my main internet connection. The 2 FreeBSD boxes are getting connected to successfully from ISPB but these and the internal network are using ISPA when I try to make a connect from them. I have been to the point with the FreeBSD1 setuping it up with just one ip address from ISPB and the ISPB gateway and that does not work so I am thinking it is with the ipfw and/or natd not being setup right. I have play around and made changes to the rules of both with out luck. I hope to have made my problem clear with as much info possible. Any question please ask. Thanks in-advance. -- Kevin Re ComputerEase Software kevinr@mycomputerease.com ComputerEase Software (http://www.mycomputerease.com) Software for Contractors To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message