- This topic is empty.
-
Posts
-
http://www.assiomatica.it/immagini/2G_3G%20Mobile%20Connection1.png
http://www.assiomatica.it/immagini/2G_3G%20Mobile%20Connection.png
http://www.assiomatica.it/immagini/VPN01%20Config.png
http://www.assiomatica.it/immagini/VPN%20Config.png
http://www.assiomatica.it/immagini/vpn.png
http://www.assiomatica.it/immagini/Gateway%20Configuration.png
http://www.assiomatica.it/immagini/ZS%20192.168.1.177.pngThanks
1) Lower the timeout co-effinciency on the gateway configuration to x4 since you have 2G/3G links (this is an optimization tip)
2) I don’t see any BOND00 containing the VPN00 and VPN01 for the L2 load balancing.Hi,
sorry I sent you a wrong screenshot.But in the mean time I made some test and I discover that the problem is that I am not using 2 zeroshell box but in one side I am using a dedicate server with a single IP even with 2 vpns bonded.
So I have now to order a multi ip from my provider before give up!I will keep you informed, but I am still interested in your configuration (if is really working)
Many thanks for now
Best regards
Antonio
this is my testbed:
client side (Zeroshell):
+
VPN00 (public ip server)
+ ---> PPP0
| |
BOND00 (192.168.1.2)
+ (NB)
| |
+
VPN01 (public ip server)
+ ---> PPP1
server side (Centos 5 Open VPN server):
+
tap0
+
| |
eth0 (public ip)
+ +
bond0 (192.168.0.1)
| |
+
tap1
+seem work but very slooooow someting like 10kB/s.
may be is because the server have only ONE pubblic IP?
thanks for your help
bye
Unless the subnet mask for the BOND00 and bond0 interfaces is /23 or bigger, this is not correct. You 2 bonds should be in the same subnet.
Yours is different from mine…we are using 2 Zeroshell devices…to create the tunnels, while it looks like you are doing 1 ZS to an outside server.
We got great help from ppalias in getting ours figured out…so believe him on what he posts.
I agree with his last post…looks like the subnets on the bond are wrong…one side is 192.168.1.X and the second side is 192.168.0.X
we went like this:
(ETH10.1.1.1)ZS–(VPNa)-calls outside of ZS2 —ZS2 (ETH10.1.2.1)
then 2nd adapter on ZS uses VPNB calls 2nd adapter on ZS2Once creqated…Bond both VPNa and VPNb together on both sides…..gave the bond00 on ZS 172.16.1.1/24 and the bond00 on ZS2 the address of 172.16.1.2/24
Went into routing on ZS and told it that the 10.1.2.X network goes to 172.16.1.2 and on ZS2…told it that the 10.1.1.X network can be found on 172.16.1.1…and it works great (see details earlier in post for best speeds and such)
So if it were me…I would put a 2nd ZS box in so you are building the tunnel between the 2 locations…your life will be easier.
TP
Hi,
thanks for you answer, the addrees of the bond is a typo error, sorry them are 192.168.0.1 and 2!
So seems you are using 2 ZS boxes but over only one line? or you have 2 lines on the other side too? I think this is the reason.
bye
Yeah the point is to have 2 ZS boxes and 2 lines terminating on each box, so you create 2 VPNs and bond them together to aggregate the bandwidth.
@Thomas_Powers wrote:
AND QOS on the bond is essential to get the bond to utilize the available bandwidth.
So moral of the story…use UDP, QOS, no compression, and make sure the speeds match.
TP
could you clarify for us what the QoS settings were that you used?
Sure…the QOS settings we used were to take the DEFAULT QOS – default class for unclassified traffic, set the max bandwidth to whatever the aggregation would be (2 t1s for example would be 3mb/s) and apply it to the bond. No other changes. if the QOS is not there giving it enough max bandwidth, we did not get good aggregation….if any at all.
- You must be logged in to reply to this topic.