lolex escreveu:Thanks for response,
If both Internet links are static how to use load balance in bfw 2.32.2 :
porta, destino, origem, there is no explanation
Thanks
Hello,
First go to Internet Configuration from left menu.
Internet Connection Configuration set it to "STATIC"
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
First Internet Link
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Internet Network Device -> eth1 (input the eth# device of one internet link. (99% chance you need use 'eth1' for this value.))
Primary IP Address --------> 10.1.1.2 (a valid IP of your first link to internet)
and Netmask -----------------> 255.X.X.X (a valid Netmask to work with your first link to internet)
Secondary IP Address (Leave blank)
and Netmask (Leave blank)
Tertiary IP Address (Leave blank)
and Netmask (Leave blank)
Default Gateway -> 10.1.1.1 (a valid gateway to work with your first link to internet)
Fake MAC address to be used (Leave Blank)
Use this option only if your ISP requires you use a specific MAC.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Second Internet Link
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Internet Network Device -> eth2 (input the eth# device of the 2nd internet link. (99% chance you need use 'eth2' for this value.))
Primary IP Address --------> 85.0.0.2 (a valid IP of your first link to internet)
Netmask -----------------------> 255.X.X.X (a valid Netmask to work with your 2nd link to internet)
and Default Gateway -----> 85.0.0.1 (a valid gateway to work with your 2nd link to internet)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
DNS
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
1st DNS Server -> 200.X.X.X
2nd DNS Server -> 200.X.X.X
CARE: All DNS Servers that you set to work with LoadBalancing, must be valid for all links configured at the same time, if you want, you can use a global DNS service provided for (ie.) OpenDNS or Google.
Then, go to "Load Balance Configuration"
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Enable Load Balance -> 'Yes'
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
IP PING: Any IP with good up time. (ie.: 74.125.229.###, this IP is an IP of a one google.com
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
First Internet Link -> Wan1 (for the link configured on eth1) ----------------------------- Second Internet Link -> Wan2 (for the link configured on eth2)
Weight for 1st link --------------------------------------------------------------------------------------- Weight for 2nd link
CARE: Weight is NOT an speed value.
Weight is a relation between the speed of the links, for example:
I must set it to wight for 1st link to '4' and the weight for the 2nd link to '1'.
This is because the first link that I have is over 8000k, and the second link is over 2000k
the relation is 4:1 (8000:2000).
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Porta
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Is usted to select an specific internet connection to work only with an specific port (this is very useful when a client visit any web page of a bank or other sites that use ssl or any other service that dont accept two ips from the same client.
The common way is lave this the ports 443 (tcp) and 53(udp) to work with only one internet
- Código: Selecionar todos
Active LINK Protocol StartingPortNumber EndingPortNumber
Yes LB2 tcp 443 443
Yes LB2 udp 53 53
*In this example the ports 443 and 53 will work only with the second internet link (LB2)
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Destino
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Do the same of "porta" but using a "destination" ip.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Origem
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Do the same of "destination" but using your local IPs. This feature is useful if you want that a determinated client (IP adress or an entire subnet) of your network works only with an specific internet link.
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Control Actions: [ New Port | New Net | New dest | Edit Conf. File | Reload ]
- - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - - -
Use New Port to add a new "Porta" rule.
Use New Net to add a new "Origem" rule.
Use New dest to add a new "Destino" rule.
I hope that I have answered your question.
Cya!
Lelouch