Differences

This shows you the differences between two versions of the page.

--- documentation:examples:aggregating_multiple_isp_links_with_mlvpn [2020/02/21 21:37] – [Virtual Lab setp] olivier
+++ documentation:examples:aggregating_multiple_isp_links_with_mlvpn [2020/02/21 21:40] – [Router 5 : MLVPN server] olivier
@@ Line 79: / Line 79: @@
 === Router 2 ===
-Router 2 is configured for rate-limiting traffic at 10 Mb/s on interface to/from R1.
+Router 2 is configured for rate-limiting traffic at 10 Mb/s on interface to/from VM1.
 <code>
-sysrc hostname=R2
+sysrc hostname=VM2 \
-sysrc ifconfig_vtnet0="10.0.12.2/24"
+        ifconfig_vtnet0="inet 10.0.12.2/24" \
-sysrc ifconfig_vtnet2="10.0.24.2/24"
+        ifconfig_vtnet3="inet 10.0.25.2/24" \
-sysrc static_routes="R5"
+        defaultrouter="10.0.25.5" \
-sysrc route_R5="-net 10.0.45.0/24 10.0.24.4"
+        firewall_enable=YES \
-sysrc firewall_enable=YES
+        firewall_script="/etc/ipfw.rules"
-sysrc firewall_script="/etc/ipfw.rules"
+cat > /etc/ipfw.rules <<EOF
-cat > /etc/ipfw.rules <<'EOF'
 #!/bin/sh
 fwcmd="/sbin/ipfw"
 kldstat -q -m dummynet || kldload dummynet
 # Flush out the list before we begin.
-${fwcmd} -f flush
+\${fwcmd} -f flush
-#Create pipes (one for each direction)
+\${fwcmd} pipe 10 config bw 10Mbit/s
-${fwcmd} pipe 10 config bw 10Mbit/s
+\${fwcmd} pipe 20 config bw 10Mbit/s
-${fwcmd} pipe 20 config bw 10Mbit/s
 #Traffic getting out vtnet0 is limited to 10Mbit/s
-${fwcmd} add 1000 pipe 10 all from any to any out via vtnet0
+\${fwcmd} add 1000 pipe 10 all from any to any out via vtnet0
 #Traffic getting int vtnet0 is limited to 10Mbit/s
-${fwcmd} add 2000 pipe 20 all from any to any in via vtnet0
+\${fwcmd} add 2000 pipe 20 all from any to any in via vtnet0
 #We don't want to block traffic, only shape some
-${fwcmd} add 3000 allow ip from any to any
+\${fwcmd} add 3000 allow ip from any to any
-'EOF'
+EOF
 service netif restart
 service routing restart
 service ipfw start
+hostname VM2
 config save
 </code>
@@ Line 115: / Line 113: @@
 === Router 3 ===
-Router 3 is configured for rate-limiting traffic at 10 Mb/s on interface to/from R1.
+Router 3 is configured for rate-limiting traffic at 10 Mb/s on interface to/from VM1.
 <code>
-sysrc hostname=R3
+sysrc hostname=VM3 \
-sysrc ifconfig_vtnet0="10.0.13.3/24"
+        ifconfig_vtnet0="inet 10.0.13.3/24" \
-sysrc ifconfig_vtnet2="10.0.34.3/24"
+        ifconfig_vtnet3="inet 10.0.35.3/24" \
-sysrc static_routes="R5"
+        defaultrouter="10.0.35.5" \
-sysrc route_R5="-net 10.0.45.0/24 10.0.34.4"
+        firewall_enable=YES \
-sysrc firewall_enable=YES
+        firewall_script="/etc/ipfw.rules"
-sysrc firewall_script="/etc/ipfw.rules"
-cat > /etc/ipfw.rules <<'EOF'
+cat > /etc/ipfw.rules <<EOF
 #!/bin/sh
 fwcmd="/sbin/ipfw"
 kldstat -q -m dummynet || kldload dummynet
 # Flush out the list before we begin.
-${fwcmd} -f flush
+\${fwcmd} -f flush
-#Create pipes (one for each direction)
+\${fwcmd} pipe 10 config bw 10Mbit/s
-${fwcmd} pipe 10 config bw 10Mbit/s
+\${fwcmd} pipe 20 config bw 10Mbit/s
-${fwcmd} pipe 20 config bw 10Mbit/s
 #Traffic getting out vtnet0 is limited to 10Mbit/s
-${fwcmd} add 1000 pipe 10 all from any to any out via vtnet0
+\${fwcmd} add 1000 pipe 10 all from any to any out via vtnet0
 #Traffic getting int vtnet0 is limited to 10Mbit/s
-${fwcmd} add 2000 pipe 20 all from any to any in via vtnet0
+\${fwcmd} add 2000 pipe 20 all from any to any in via vtnet0
 #We don't want to block traffic, only shape some
-${fwcmd} add 3000 allow ip from any to any
+\${fwcmd} add 3000 allow ip from any to any
-'EOF'
+EOF
 service netif restart
 service routing restart
 service ipfw start
+hostname VM3
 config save
 </code>
@@ Line 151: / Line 148: @@
 === Router 4 ===
-Router 4 is the aggregating server's default gateway.
+Router 4 is configured for rate-limiting traffic at 10 Mb/s on interface to/from VM1.
 <code>
-sysrc hostname=R4
+sysrc hostname=VM4 \
-sysrc ifconfig_vtnet1="10.0.24.4/24"
+        ifconfig_vtnet0="inet 10.0.14.4/24" \
-sysrc ifconfig_vtnet2="10.0.34.4/24"
+        ifconfig_vtnet3="inet 10.0.45.4/24" \
-sysrc ifconfig_vtnet3="10.0.45.4/24"
+        defaultrouter="10.0.45.5" \
-sysrc static_routes="R2 R3"
+        firewall_enable=YES \
-sysrc route_R2="-net 10.0.12.0/24 10.0.24.2"
+        firewall_script="/etc/ipfw.rules"
-sysrc route_R3="-net 10.0.13.0/24 10.0.34.3"
+cat > /etc/ipfw.rules <<EOF
+#!/bin/sh
+fwcmd="/sbin/ipfw"
+kldstat -q -m dummynet || kldload dummynet
+# Flush out the list before we begin.
+\${fwcmd} -f flush
+\${fwcmd} pipe 10 config bw 10Mbit/s
+\${fwcmd} pipe 20 config bw 10Mbit/s
+#Traffic getting out vtnet0 is limited to 10Mbit/s
+\${fwcmd} add 1000 pipe 10 all from any to any out via vtnet0
+#Traffic getting int vten0 is limited to 10Mbit/s
+\${fwcmd} add 2000 pipe 20 all from any to any in via vtnet0
+#We don't want to block traffic, only shape some
+\${fwcmd} add 3000 allow ip from any to any
+EOF
+service netif restart
+service routing restart
+service ipfw start
+hostname VM4
+config save
+</code>
+=== Router 5 ===
+Router 5 is the aggregating server's default gateway.
+<code>
+sysrc hostname=R5 \
+        ifconfig_vtnet1="inet 10.0.25.5/24" \
+        ifconfig_vtnet2="inet 10.0.35.5/24" \
+        ifconfig_vtnet3="inet 10.0.45.5/24" \
+        ifconfig_vtnet4="inet 10.0.56.5/24" \
+        static_routes="ISP1 ISP2 ISP3" \
+        route_ISP1="-host 10.0.12.1 10.0.25.2" \
+        route_ISP2="-host 10.0.13.1 10.0.35.3" \
+        route_ISP3="-host 10.0.14.1 10.0.45.4"
 service netif restart
 service routing restart
+hostname VM5
 config save
 </code>
@@ Line 217: / Line 252: @@
 </code>
-==== Router 5 : MLVPN server ====
+==== Router 6 : MLVPN server ====
-Router 5 is configured as a aggregating server.
+Router 6 is configured as a aggregating server.
 <code>
-sysrc hostname=R5
+sysrc hostname=VM6 \
-sysrc cloned_interfaces="lo1"
+        cloned_interfaces="lo1" \
-sysrc ifconfig_lo1="inet 10.5.5.5/32"
+        ifconfig_lo1="inet 10.6.6.6/32" \
-sysrc ifconfig_vtnet3="10.0.45.5/24"
+        ifconfig_vtnet4="inet 10.0.56.6/24" \
-sysrc defaultrouter=10.0.45.4
+        defaultrouter="10.0.56.5"
-sysrc mlvpn_enable=YES
+cat > /usr/local/etc/mlvpn/mlvpn.conf <<EOF
-cat <<'EOF' > /usr/local/etc/mlvpn/mlvpn.conf
 [general]
 statuscommand = "/usr/local/etc/mlvpn/mlvpn_updown.sh"
 tuntap = "tun"
 mode = "server"
-ip4 = "10.0.15.5/30"
+ip4 = "10.0.16.2/30"
-ip4_gateway = "10.0.15.1"
+ip4_gateway = "10.0.16.1"
 ip4_routes = "10.1.1.1/32"
 timeout = 30
@@ Line 243: / Line 276: @@
 [adsl2]
-bindhost = "10.0.45.5"
+bindhost = "10.0.56.6"
 bindport = 5082
 [adsl3]
-bindhost = "10.0.45.5"
+bindhost = "10.0.56.6"
 bindport = 5083
-'EOF'
+[adsl4]
+bindhost = "10.0.56.6"
+bindport = 5084
+EOF
+service mlvpn enable
 service netif restart
 service routing restart
 service mlvpn start
+hostname VM6
 config save
 </code>