[GRLUG] Multi Home
Adam Tauno Williams
awilliam at whitemice.org
Fri Jul 13 15:08:42 EDT 2012
On Fri, 2012-07-13 at 14:55 -0400, megadave wrote:
> Even that will be tricky, as it is likely that both providers have
> filters in place to reject traffic with an origin IP address
> that isnt part of their network.
Correct, you'd need to NAT the source [SNAT] to match the selected path.
You probably also want to ensure you only select from paths that are
available; so you only pick the AT&T path when the Comcrapstic
connection is down.
And it means, in any case, that a circuit-down event *will* cause
current connections to be dropped; at least the connection's SNAT'd to
the down link.
The *only* real way around this is to have your own IPv4 addresses [not
delegated ones] and a BGP AS. This is one of many reasons IPv6 *ROCKS*
and IPv4 *SUCKS* and SNAT is *EVIL*. With IPv4, and lacking buckets of
money, you can only achieve kinda-sorta fail-over [despite whatever
bull**** any vendor tries to sell you].
> Another option is to lease said VPS/server, run a VPN/tunnel over each
> of the upstream, bond them together and have all your traffic appear
> at the VPS/server.
Agree, and that works great till the VPS goes down.
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 198 bytes
Desc: This is a digitally signed message part
URL: <http://shinobu.grlug.org/pipermail/grlug/attachments/20120713/6c2669b6/attachment.pgp>
More information about the grlug
mailing list