@cataha I did not prepare for this vid at all. I noticed re-watching it there were several times when I said things incomplete or used the wrong term because I was kind of nervous talking on a video.
That being said I do know IOS and rouing. What TACACS/radius for doing auth or AES/DES (encryption) has anything to do with what I was doing I have no clue. Tell me what residential connection someone would use BGP or OSPF if you even could?
@cataha Just to add cause a lack of comment space. This was a very specific setup to allow me to utilize the combined total of two 35/35 conenctions (for around 68/68 after overhead) over a SINGLE TCP/IP stream (single rsync, wget download, etc..) And perfectly balanced traffic between interfaces (PERFECTLY). Please tell me what other solution exists for doing this?
@cataha What do you mean send/receive? The static route is used for bi-directional traffic. I think you are misunderstanding what the static route was even being used for. The only thing it was used for was to insure communication to x.x.x.91 went through ETH01 (fios1) and x.x.x.92 went through ETH02 (fios2) to insure that each VPN connection was going overa different physical link. There is no just sending or receiving to these.
@cataha It seems more like you misunderstand what a static route is from your previous comment. There is nothing miss-configured about my routing table. Because you have two links load balanced its possible for connections to use either of your balanced internet connections for the VPN conentions. To prevent this from happening (becuase you always want each VPN going over a different physical connection) you have to do this somehow and I chose a static route.
@houkouonchi One of the reasons I chose a static route is because if the connection is down it will not work. This is good in the case of a bonded VPN as it already does the fail-over on the bonding side and doesnt start working again with now both VPN connections going over the same physical link. I found that this happened often when I used zeroshells netbalancer rules which is why I think a static route is the best method to use in this case.
@houkouonchi Keep in mind that ETH01 and ETH02 are two separate internet connections, My LAN is ETH00. Maybe this is where you are confused thinking one is LAN and WAN and that is why you said incoming/outgoing. This is not the case. This machine has four interfaces, three of which are in use. I used static routes just for what they are supposed to be used for. To specify the gateway/interface used when accessing a destination network (or host/ip in this case).
i'm not a hater but take a CCNA or read on it. It will dramatically improve your future configuration problems
Cause i can see you coming base from experience of poking around
Nice Video
cataha 1 month ago
@cataha Kind of curious what these 'future configuration problems' are you speak of.
houkouonchi 1 month ago
@houkouonchi understanding basics of route lookups also protocols that are used BGP, EIGRP, OSPF, RIP1/2, IS-IS, TACACS+, RADIUS AES DES3 etc....
watch?v=L3bVjb2mTGU
watch?v=aJB0E3_C4dQ
watch?v=M0ZOwWVZwDk
Will make your life much simpler with lesser router overloads and sufficient packet throughput moreover hacker attacks
cataha 1 month ago
@cataha I did not prepare for this vid at all. I noticed re-watching it there were several times when I said things incomplete or used the wrong term because I was kind of nervous talking on a video.
That being said I do know IOS and rouing. What TACACS/radius for doing auth or AES/DES (encryption) has anything to do with what I was doing I have no clue. Tell me what residential connection someone would use BGP or OSPF if you even could?
houkouonchi 1 month ago
@cataha Just to add cause a lack of comment space. This was a very specific setup to allow me to utilize the combined total of two 35/35 conenctions (for around 68/68 after overhead) over a SINGLE TCP/IP stream (single rsync, wget download, etc..) And perfectly balanced traffic between interfaces (PERFECTLY). Please tell me what other solution exists for doing this?
houkouonchi 1 month ago
@houkouonchi
send x.x.x.91 receiving x.x.x.92 static route.
There was a problem with a bonding that made you delete, static/dynamic miss_confi routing table
Routing protocols are similar but different in doing things.
BGP Boarder Gateway Protocol with frame-relay (in most cases RIP inside with adv equip OSPF)
FIREWALL their are two keys one for Tunnel Other for data encryption
rule from user_x.x.x.x to your_ip_out via nat too inter_ip
cataha 1 month ago
@cataha with acl rule to port number of trusted ip sources
cataha 1 month ago
@cataha What do you mean send/receive? The static route is used for bi-directional traffic. I think you are misunderstanding what the static route was even being used for. The only thing it was used for was to insure communication to x.x.x.91 went through ETH01 (fios1) and x.x.x.92 went through ETH02 (fios2) to insure that each VPN connection was going overa different physical link. There is no just sending or receiving to these.
houkouonchi 1 month ago
watch?v=gPnnYRkmDb0
cataha 1 month ago
@cataha It seems more like you misunderstand what a static route is from your previous comment. There is nothing miss-configured about my routing table. Because you have two links load balanced its possible for connections to use either of your balanced internet connections for the VPN conentions. To prevent this from happening (becuase you always want each VPN going over a different physical connection) you have to do this somehow and I chose a static route.
houkouonchi 1 month ago
@houkouonchi One of the reasons I chose a static route is because if the connection is down it will not work. This is good in the case of a bonded VPN as it already does the fail-over on the bonding side and doesnt start working again with now both VPN connections going over the same physical link. I found that this happened often when I used zeroshells netbalancer rules which is why I think a static route is the best method to use in this case.
houkouonchi 1 month ago
@houkouonchi Keep in mind that ETH01 and ETH02 are two separate internet connections, My LAN is ETH00. Maybe this is where you are confused thinking one is LAN and WAN and that is why you said incoming/outgoing. This is not the case. This machine has four interfaces, three of which are in use. I used static routes just for what they are supposed to be used for. To specify the gateway/interface used when accessing a destination network (or host/ip in this case).
houkouonchi 1 month ago
thx man nice tut
depend6x 11 months ago