IPCop and Bonding 2 DSL lines

Discussion in 'Forum Suggestions' started by beatty_t, Oct 11, 2006.

?

Do have or are you currently looking into 2 internet connections at home/business

Poll closed Oct 25, 2006.
  1. I have 2 connections already

    0 vote(s)
    0.0%
  2. I am interested in getting setup with 2 connections

    50.0%
  3. I did not realize that you could do this

    0 vote(s)
    0.0%
  4. I am not interested in 2 connections

    0 vote(s)
    0.0%
  5. 2 connections is still too expensive in my area

    0 vote(s)
    0.0%
  6. I have already opted for a T1+ connection

    50.0%
Multiple votes are allowed.
  1. beatty_t

    beatty_t New Member

    I thought it'd be an interesting howto to have IPCop act as the firewall/router for 2 WAN connections to a LAN. Currently here in Waterloo, ON (Canada)... I can get 2 x (6Mb down/800kbps up) connections for a quarter of the cost that a T1 line would be...

    Would anyone else be interested in something similar or have something setup that they'd want share? I'm using a 2 WAN router to accomplish this task for now, but I thought it'd be cool to setup IPCop to do it if it's possible.
     
    Last edited: Oct 11, 2006
  2. falko

    falko Super Moderator Howtoforge Staff

    This would be really interesting, although I'm quite satisfied with my 16 MBit line for now... :)
     
  3. beatty_t

    beatty_t New Member

    16 Mbit

    Would that be an ADSL2/+ line you have? We won't be getting ADSL2 until maybe 2007 and VDSL in 2008-2009 as far as I can tell (I'm not holding my breath)... It will be rediculously expensive anyway probably... Do you have an idea of where most of the forum members are from?
     
  4. falko

    falko Super Moderator Howtoforge Staff

    Yes. It's EUR 51.90/month incl. a DSL flatrate and a telephone flatrate (for Germany)(ISDN - no VoIP :)). It's fun to download Linux CDs in 6 - 7 minutes. :) But they could increase the upload bandwidth, I think. It's only 1 MBit/s.

    I think North America and Europe. But I don't know from which countries exactly. We also have users from South America, Africa, Asia, and Australia, but the majority should be from North America and Europe.
     
  5. woleium

    woleium New Member

    pfsense

    I have a colleague that is using pfsense to run a similar setup, It's based on m0n0wall, which is a freebsd firewall distro which has been cleverly modified to use an XML file for config, instead of the /etc folder. m0n0 is based on the 'less is more' concept of security, but pfsense has the ability to add modules (most are in beta atm, with the exception of squid & snort) It also supports CARP (open source version of ciscos HSRP/VRRP), service based traffic shaping and most importantly for you "outgoing load balancing pool"

    It is (at the risk of starting a flamewar) widely regarded in the security world to be more secure than it's linux counterparts (ipcop, smoothwall, etc.) & although any deviation from the less is more rule introduces greater opportunity for exploitation, as long as you stick to squid & snort as your only add on packages you should be ok.

    W.:)
     
  6. beatty_t

    beatty_t New Member

    Always open to suggestions

    How am I supposed to get my work done when people send me cool stuff like this to play with (if there was an animated headshake smiley, it would go here)?:D There are some advanced tutorials on loadbalancing with CARP and routing with multiple WAN.

    Thanks a bunch!

    I'm not looking to "start a flamewar" either, but do others have any comments on pfsense and security?
     
  7. beatty_t

    beatty_t New Member

    This might be a stupid question, but as a "shameless wonder" I'll throw it out there anyway... pfsense supports loadbalancing, but in the FAQ it says that it doesn't support fail-over. My question is... if you have loadbalancing setup, would that not also be providing fail-over? Why would you pay for 2 lines to have one sit idle for a "just-in-case" situation when both could be utilized? As I understand, loadbalancing checks to see if the connection is available as well as what the load is right? If there is no connection found, it would automatically push 100% of the flow to the other WAN wouldn't it?...
     
  8. bschultz

    bschultz Member

    I know this is a Linux forum, but my work has a Mac OS X (10.3.9) server (I use Debian myself...since I'm smarter than my boss!). Does anyone know of a way to bond 2 DSL lines on 10.3.9?
     
  9. capableson

    capableson New Member

    There are ways to bond via telco's cooperation. If the ISP let's you for MLPPP, then your DSL lines can be bonded.

    If however, your ISP doesn't support MLPPP (which is almost always the case other than some exception), you can look into "broadband bonding" as an alternative. Broadband Bonding is true bonding (it is not load-balancing sessions, it is indeed bonding at a packet level) and doesn't require any coordination from the ISP. Additionally, with this method, you can bond different ISP connections.

    For bonding cellular aircards, check out what this film production company did:
    http://www.youtube.com/watch?v=S0_Cq89aUd0
     

Share This Page