Firebrick Plus and Fallover?

Ben Mack

2006-05-10 10:36:10 UTC

Post by Sparks
Hi,
Does the Firebrick Plus support having two broadband connections (both with
a single, dynamic IP address)?
I have two broadband connections, one ADSL and one cable.
Currently If I set the default gateway of my PC's to 192.168.1.1 It goes out
via the ADSL, and if I set it to 192.168.1.3 it goes out via the cable.
Can the Firebrick Plus bring these together?
Say giving the Firebrick an IP of 192.168.1.2, setting the gateway of the
PC's to this IP.
Ideally I would like it to use the ADSL line when it is available, but fall
over to the cable line if the ADSL goes down.

The simplest approach is to use a Ping Profile to monitor the health of
the ADSL line (set it to ping the WAN address of the ADSL router, which
normally disappears when the line is down). Set the default gateway to
192.168.1.1, and add a routing rule to route everything to 192.168.1.3
when the ping profile is inactive (i.e. NOT profile)

You will also need a routing rule (above the fallback route) that forces
traffic from the brick to the ADSL WAN address to use gateway
192.168.1.1, otherwise when the fallback route kicks in, the pings will
be routed to the cable modem

As you are using private IPs, with NAT on the cable modem and ADSL
router, you can just use a static subnet on the brick e.g.
192.168.1.2/24

Bear in mind that if you use the same subnet on both sides of the brick,
you either need to leave stealth routing on, or use proxy-ARP.

Alternatively you could use different WAN and LAN subnets (e.g.
10.0.0.254/24 on LAN, and 192.168.1.2/24 on WAN), enable NAT (otherwise
cable modem and ADSL router won't know what to do with 10.0.0.X
traffic), and switch off stealth

HTH

--
Ben Mack
Watchfront Electronics - Bespoke R&D - http://www.watchfront.co.uk/
Watchfront Internet - ADSL, Colo - http://www.watchfront.net/
Are you bricking it? - Firewalls - http://www.firebrick.co.uk/