Hello everyone !
I have a tough problem. I searched with google for a solution, but i haven't found anything to help me.
I've installed Fedora Core 4 on a desktop PC with 4 ethernet cards(one of them is inactivated). This PC is connected to 2 ISP and a LAN. His purpose in the long term is to provide internet for LAN making load balancing between the 2 ISP.
At the moment it just make NAT for IP_ISP1 in LAN and is a VPN(OpenVPN) node.
Code:
Legend:
IP_ISP1 - routable ip from the first ISP
IP_ISP2 - routable ip from the second ISP
LAN_VPN - net pattern for the VPN
LAN_LOCAL - net pattern for the LAN
router - the desktop with Fedora Core 4
Code:
Iptables settings:
# iptables -t nat -L
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
ACCEPT all -- LAN_LOCAL LAN_VPN
SNAT all -- LAN_LOCAL anywhere to: IP_ISP1
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
The problem consist in packets lost, that disconnect the applications(that needs constant internet data) from the LAN workstations.
Pinging the exterior from any of the workstations on the LAN(except FC4 router) results in appearing irregular <b>Request timed out</b>. Below just an example:
Code:
C:\>ping _ww.yahoo.com
Pinging _ww.yahoo.akadns.net [68.142.197.88] with 32 bytes of data:
Reply from 68.142.197.88: bytes=32 time=182ms TTL=53
Request timed out.
Reply from 68.142.197.88: bytes=32 time=167ms TTL=53
Reply from 68.142.197.88: bytes=32 time=165ms TTL=53
Ping statistics for 68.142.197.88:
Packets: Sent = 4, Received = 3, Lost = 1 (25% loss),
Approximate round trip times in milli-seconds:
Minimum = 165ms, Maximum = 182ms, Average = 171ms
Pinging maded sincronus(in the same time)(to the same internet site) from the FC4 router result in no packet loss, so i belive that is something from the settings made to the FC4 router.
Any ping given in the LAN is ok(<1ms whithout any packet loss)
The services list from FC4 router is:
Code:
# chkconfig --list
NetworkManager 0:off 1:off 2:off 3:off 4:off 5:off 6:off
NetworkManagerDispatcher 0:off 1:off 2:off 3:off 4:off 5:off 6:off
acpid 0:off 1:off 2:off 3:on 4:on 5:on 6:off
anacron 0:off 1:off 2:on 3:on 4:on 5:on 6:off
apmd 0:off 1:off 2:on 3:on 4:on 5:on 6:off
atd 0:off 1:off 2:off 3:on 4:on 5:on 6:off
auditd 0:off 1:off 2:on 3:on 4:on 5:on 6:off
autofs 0:off 1:off 2:off 3:on 4:on 5:on 6:off
bluetooth 0:off 1:off 2:on 3:on 4:on 5:off 6:off
cpuspeed 0:off 1:on 2:on 3:on 4:on 5:on 6:off
crond 0:off 1:off 2:on 3:on 4:on 5:on 6:off
cups 0:off 1:off 2:on 3:on 4:on 5:off 6:off
cups-config-daemon 0:off 1:off 2:off 3:on 4:on 5:off 6:off
diskdump 0:off 1:off 2:off 3:off 4:off 5:off 6:off
dovecot 0:off 1:off 2:off 3:off 4:off 5:off 6:off
gpm 0:off 1:off 2:on 3:on 4:on 5:on 6:off
haldaemon 0:off 1:off 2:off 3:on 4:on 5:on 6:off
httpd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
ipsec 0:off 1:off 2:off 3:off 4:off 5:on 6:off
iptables 0:off 1:off 2:on 3:on 4:on 5:on 6:off
irda 0:off 1:off 2:off 3:off 4:off 5:off 6:off
isdn 0:off 1:off 2:on 3:on 4:on 5:off 6:off
kudzu 0:off 1:off 2:off 3:on 4:on 5:on 6:off
lisa 0:off 1:off 2:off 3:off 4:off 5:off 6:off
lm_sensors 0:off 1:off 2:on 3:on 4:on 5:off 6:off
mDNSResponder 0:off 1:off 2:off 3:on 4:on 5:off 6:off
mailman 0:off 1:off 2:off 3:off 4:off 5:off 6:off
mdmonitor 0:off 1:off 2:on 3:on 4:on 5:off 6:off
mdmpd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
messagebus 0:off 1:off 2:off 3:on 4:on 5:on 6:off
named 0:off 1:off 2:off 3:off 4:off 5:off 6:off
netdump 0:off 1:off 2:off 3:off 4:off 5:off 6:off
netfs 0:off 1:off 2:off 3:on 4:on 5:on 6:off
netplugd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
network 0:off 1:off 2:on 3:on 4:on 5:on 6:off
nfs 0:off 1:off 2:off 3:off 4:off 5:off 6:off
nfslock 0:off 1:off 2:off 3:on 4:on 5:on 6:off
nifd 0:off 1:off 2:off 3:on 4:on 5:off 6:off
nscd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
ntpd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
pcmcia 0:off 1:off 2:on 3:on 4:on 5:off 6:off
portmap 0:off 1:off 2:off 3:on 4:on 5:off 6:off
psacct 0:off 1:off 2:off 3:off 4:off 5:off 6:off
rdisc 0:off 1:off 2:off 3:off 4:off 5:off 6:off
rhnsd 0:off 1:off 2:off 3:on 4:on 5:off 6:off
rpcgssd 0:off 1:off 2:off 3:on 4:on 5:off 6:off
rpcidmapd 0:off 1:off 2:off 3:on 4:on 5:off 6:off
rpcsvcgssd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
saslauthd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
sendmail 0:off 1:off 2:on 3:on 4:on 5:off 6:off
smb 0:off 1:off 2:off 3:off 4:off 5:off 6:off
snmpd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
snmptrapd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
spamassassin 0:off 1:off 2:off 3:off 4:off 5:off 6:off
sshd 0:off 1:off 2:on 3:on 4:on 5:on 6:off
syslog 0:off 1:off 2:on 3:on 4:on 5:on 6:off
vncserver 0:off 1:off 2:off 3:off 4:off 5:on 6:off
vsftpd 0:off 1:off 2:off 3:off 4:off 5:off 6:off
winbind 0:off 1:off 2:off 3:off 4:off 5:off 6:off
xfs 0:off 1:off 2:on 3:on 4:on 5:on 6:off
ypbind 0:off 1:off 2:off 3:off 4:off 5:off 6:off
yum 0:off 1:off 2:off 3:off 4:off 5:off 6:off
Please help me to identify the source of problem and to fixit.
With hope
mesomi
