Discussion:
multiple internet connections - balancing not working
greg whynott
2011-08-25 21:53:03 UTC
Permalink
Hi,

We have 2 DSL modems connected to the same network (192.168.2.1 and .2 ) as
the pfsence box is connected to (192.168.2.10). I've configured them into a
Gateway group after defining the 2 under the 'gateway' tab (system -
routing) and assigned them all the same 'Tier 1' level. Under Firewall
rules I added a 'pass all' rule and for the gateway under the Advanced
features section i selected the aforementioned gateway group.

access to the internet works, and if i reboot the active modem, the
connections will fail over to the surviving modem. but i am not seeing it
balance oubound connections when both modems are up. I've loaded multiple
'what is my ip' pages from various sources threwout the day, and then fired
off a bunch of downloads to saturate the link, but still nothing appears to
be going down the other dsl line.


I got a hold of a copy of "pfsence the definitive guide", under section 11
it talks about this, but it appers it is for an earlier version, as the
version i'm using does not have the options it speaks of. it looks more
like a server load balancing area now.

I am using version:
*2.0-RC3 * (i386)
built on Tue Jun 21 16:50:25 EDT 2011


any idea what it may be? I'm thinking I should of gotten the current
version and not a pre release. 8)

thanks for your time,
greg
Younes EL AMRAOUI
2011-08-25 22:28:25 UTC
Permalink
Hi,
Did you use the gateway group in firewall rules??
Post by greg whynott
Hi,
We have 2 DSL modems connected to the same network (192.168.2.1 and .2 ) as
the pfsence box is connected to (192.168.2.10). I've configured them into
a Gateway group after defining the 2 under the 'gateway' tab (system -
routing) and assigned them all the same 'Tier 1' level. Under Firewall
rules I added a 'pass all' rule and for the gateway under the Advanced
features section i selected the aforementioned gateway group.
access to the internet works, and if i reboot the active modem, the
connections will fail over to the surviving modem. but i am not seeing it
balance oubound connections when both modems are up. I've loaded multiple
'what is my ip' pages from various sources threwout the day, and then fired
off a bunch of downloads to saturate the link, but still nothing appears to
be going down the other dsl line.
I got a hold of a copy of "pfsence the definitive guide", under section 11
it talks about this, but it appers it is for an earlier version, as the
version i'm using does not have the options it speaks of. it looks more
like a server load balancing area now.
*2.0-RC3 * (i386)
built on Tue Jun 21 16:50:25 EDT 2011
any idea what it may be? I'm thinking I should of gotten the current
version and not a pre release. 8)
thanks for your time,
greg
--
Younes EL AMRAOUI

*Engineering Student at ESIREM.*
*Computer Science Engineering School.*
*+33629153757*
*Dijon ,FRANCE .*
greg whynott
2011-08-26 13:40:12 UTC
Permalink
Hi,
Yes I did. I mentioned this in my post.

thanks,
greg
Post by Younes EL AMRAOUI
Hi,
Did you use the gateway group in firewall rules??
Under Firewall rules I added a 'pass all' rule and for the gateway
under the Advanced features section* i selected the aforementioned
gateway group.*
Seth Mos
2011-08-26 13:45:01 UTC
Permalink
Post by greg whynott
Hi,
Yes I did. I mentioned this in my post.
thanks,
greg
You can not use the same gateway address on multiple interfaces.

Regards,
Seth

---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscribe-***@public.gmane.org
For additional commands, e-mail: support-help-***@public.gmane.org

Commercial support available - https://portal.pfsense.org
greg whynott
2011-08-26 13:53:58 UTC
Permalink
why are you saying this? I don't belive i am. the gateways are .1 and .2.
there is only 2 interfaces on the box, one on a 10.x network and the other
in the 192.x network.

-g
Post by Seth Mos
You can not use the same gateway address on multiple interfaces.
Younes EL AMRAOUI
2011-08-26 13:55:16 UTC
Permalink
what the CIDR of every gateway?
Post by greg whynott
why are you saying this? I don't belive i am. the gateways are .1 and
.2. there is only 2 interfaces on the box, one on a 10.x network and the
other in the 192.x network.
-g
Post by Seth Mos
You can not use the same gateway address on multiple interfaces.
--
Younes EL AMRAOUI

*Engineering Student at ESIREM.*
*Computer Science Engineering School.*
*+33629153757*
*Dijon ,FRANCE .*
greg whynott
2011-08-26 14:02:32 UTC
Permalink
they are all /24 networks. all interfaces are configured with the same
mask/network on that side of the device. Should it help, the setup
works(fail over) when one of the gateways fail, but they don't appear to
ballance with both are up.

-g
Post by Younes EL AMRAOUI
what the CIDR of every gateway?
Post by greg whynott
why are you saying this? I don't belive i am. the gateways are .1 and
.2. there is only 2 interfaces on the box, one on a 10.x network and the
other in the 192.x network.
-g
Post by Seth Mos
You can not use the same gateway address on multiple interfaces.
--
Younes EL AMRAOUI
*Engineering Student at ESIREM.*
*Computer Science Engineering School.*
*+33629153757*
*Dijon ,FRANCE .*
Younes EL AMRAOUI
2011-08-26 14:05:58 UTC
Permalink
You don't have right to do this because there are all in the same network
192.168.2.0 ( /24 = 255.255.255.0).
Post by greg whynott
they are all /24 networks. all interfaces are configured with the same
mask/network on that side of the device. Should it help, the setup
works(fail over) when one of the gateways fail, but they don't appear to
ballance with both are up.
-g
Post by Younes EL AMRAOUI
what the CIDR of every gateway?
Post by greg whynott
why are you saying this? I don't belive i am. the gateways are .1 and
.2. there is only 2 interfaces on the box, one on a 10.x network and the
other in the 192.x network.
-g
Post by Seth Mos
You can not use the same gateway address on multiple interfaces.
--
Younes EL AMRAOUI
*Engineering Student at ESIREM.*
*Computer Science Engineering School.*
*+33629153757*
*Dijon ,FRANCE .*
--
Younes EL AMRAOUI

*Engineering Student at ESIREM.*
*Computer Science Engineering School.*
*+33629153757*
*Dijon ,FRANCE .*
greg whynott
2011-08-26 14:45:41 UTC
Permalink
?... i'm not sure what you are saying. the documentation does not
indicate i have to have each modem hanging off its own interface directly
connected the the pfsense box, and from a network perspective there isn't
anything wrong with having 2 gateways on the same network. they each have a
unique IP and go to different ISPs. Am I wrong here?


Loading Image.../


is what the set up looks like.

thanks again,
greg
Post by Younes EL AMRAOUI
You don't have right to do this because there are all in the same network
192.168.2.0 ( /24 = 255.255.255.0).
Post by greg whynott
they are all /24 networks. all interfaces are configured with the same
mask/network on that side of the device. Should it help, the setup
works(fail over) when one of the gateways fail, but they don't appear to
ballance with both are up.
-g
Post by Younes EL AMRAOUI
what the CIDR of every gateway?
Post by greg whynott
why are you saying this? I don't belive i am. the gateways are .1 and
.2. there is only 2 interfaces on the box, one on a 10.x network and the
other in the 192.x network.
-g
Post by Seth Mos
You can not use the same gateway address on multiple interfaces.
--
Younes EL AMRAOUI
*Engineering Student at ESIREM.*
*Computer Science Engineering School.*
*+33629153757*
*Dijon ,FRANCE .*
--
Younes EL AMRAOUI
*Engineering Student at ESIREM.*
*Computer Science Engineering School.*
*+33629153757*
*Dijon ,FRANCE .*
Seth Mos
2011-08-26 14:53:20 UTC
Permalink
Hi Greg,
Post by greg whynott
?... i'm not sure what you are saying. the documentation does not
indicate i have to have each modem hanging off its own interface
directly connected the the pfsense box, and from a network perspective
there isn't anything wrong with having 2 gateways on the same
network. they each have a unique IP and go to different ISPs. Am I
wrong here?
Yeah, that should theoretically work as intended. Can you send me that
part for the /tmp/rules.debug to me (private email)?

If you could send the part of the config.xml that contains the gateway
items and gateway groups that would be swell.

Atleast, that's way I intended it to work and why I added the gateways
format in the first place.

I was misunderstanding that you were using the same Gateway IP address
on 2 different interfaces. Which is something which didn't work in 1.2
and still won't in 2.0.

Regards,

Seth
Post by greg whynott
http://imageshack.us/photo/my-images/508/smallnet.jpg/
is what the set up looks like.
thanks again,
greg
You don't have right to do this because there are all in the same
network 192.168.2.0 ( /24 = 255.255.255.0).
they are all /24 networks. all interfaces are configured with
the same mask/network on that side of the device. Should it
help, the setup works(fail over) when one of the gateways
fail, but they don't appear to ballance with both are up.
-g
On Fri, Aug 26, 2011 at 9:55 AM, Younes EL AMRAOUI
what the CIDR of every gateway?
why are you saying this? I don't belive i am. the
gateways are .1 and .2. there is only 2 interfaces on
the box, one on a 10.x network and the other in the
192.x network.
-g
You can not use the same gateway address on multiple
interfaces.
--
Younes EL AMRAOUI
/Engineering Student at ESIREM./
/Computer Science Engineering School./
/+33629153757 <tel:%2B33629153757>/
/Dijon ,FRANCE ./
--
Younes EL AMRAOUI
/Engineering Student at ESIREM./
/Computer Science Engineering School./
/+33629153757 <tel:%2B33629153757>/
/Dijon ,FRANCE ./
---------------------------------------------------------------------
To unsubscribe, e-mail: support-unsubscribe-***@public.gmane.org
For additional commands, e-mail: support-help-***@public.gmane.org

Commercial support available - https://portal.pfsense.org

Loading...