From owner-freebsd-net Fri May 4 11:29:25 2001 Delivered-To: freebsd-net@freebsd.org Received: from hpu450.hpu.edu (hpu450.hpu.edu [198.199.136.21]) by hub.freebsd.org (Postfix) with ESMTP id 5F02737B43C; Fri, 4 May 2001 11:29:19 -0700 (PDT) (envelope-from waichan@hpu.edu) Received: from sniffit (sniffit.nt.hpu.edu [10.2.1.7]) by hpu450.hpu.edu (8.8.8+Sun/8.8.7) with SMTP id IAA26460; Fri, 4 May 2001 08:27:57 -1000 (HST) From: "Wai Chan" To: "Mike E. Matsnev" , "Babak Farrokhi" Cc: , Subject: RE: outgoing traffic load balancing with multiple ISP Date: Fri, 4 May 2001 08:27:57 -1000 Message-ID: MIME-Version: 1.0 Content-Type: text/plain; charset="US-ASCII" Content-Transfer-Encoding: 7bit X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <20010504173202.A61313@balrog.rt.ru> X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4133.2400 Importance: Normal Sender: owner-freebsd-net@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I want load balancing on ISP1 and ISP2 (http traffic only for now). I don't want all the http traffic go through ISP1 (nor ISP2). I want: 50% http traffic go through ISP1 + 50% http traffic go through ISP2 --------------------------------------- 100% http traffic I saw ipfw has forward feature, so I am wondering the following rules can do the trick or not. /sbin/ipfw -f flush /sbin/ipfw add prob 0.5 fwd isp1.ip.address all from 127.0.0.1 8080 to any /sbin/ipfw add prob 1 fwd isp2.ip.address all from 127.0.0.1 8080 to any /sbin/ipfw add allow tcp from isp1.ip.address to any /sbin/ipfw add allow tcp from isp2.ip.address to any /sbin/ipfw add fwd 127.0.0.1,8080 tcp from any to any 80 /sbin/ipfw add allow all from any to any BTW, I am using Squid 2.4 stable WCCP (similar to transparent proxy), and you are right, I only want to deal with http traffic for now. I want to apply these ipfw rules to the Squid box, but just don't know these ipfw rules and the thought is right or not. Please provide advice/suggestion/.... Thanks! best wishes, Wai Chan -----Original Message----- From: owner-freebsd-net@FreeBSD.ORG [mailto:owner-freebsd-net@FreeBSD.ORG]On Behalf Of Mike E. Matsnev Sent: Friday, May 04, 2001 03:32 AM To: Wai Chan Cc: freebsd-net@FreeBSD.ORG; freebsd-questions@FreeBSD.ORG Subject: Re: outgoing traffic load balancing with multiple ISP On Thu, May 03, 2001 at 03:26:18PM -1000, Wai Chan wrote: > We don't want to leave ISP 1's pipe empty. If the outgoing traffic is using > the IP provided by ISP 1, then the returned traffic will be using ISP 1 > provided pipe. It applies to ISP 2 also. That's why I am trying to force > half of the traffic (http) use ISP 1 provided IP, and the other half use ISP > 2 provided IP. This can be solved by using a transparent proxy for http, that will use source IPs provided by ISP1. /Mike To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-net" in the body of the message