Larvitz  4d ago

Running a FreeBSD server with two independent uplinks?

My latest deep dive covers how to mix a physical provider and a BGP tunnel to serve NAT'd, routed, and pure public jail traffic on a single bridge.

We break down Dual-FIB policy routing and show you how to use PF's rtable and reply-to directives to fix asymmetric routing and keep traffic strictly separated.

Policy routing done right: https://blog.hofstede.it/dual-fib-policy-routing-on-freebsd-two-upstreams-one-server-zero-confusion/

#FreeBSD #BGP #Jails #SysAdmin #networking #routing

Dual-FIB Policy Routing on FreeBSD: Two Upstreams, One Server, Zero Confusion

How to run a FreeBSD server with two completely independent internet uplinks - a physical provider and a BGP tunnel - using dual-FIB routing tables, PF’s rtable and reply-to directives, and a singl...

Larvitz Blog
Show threadgary4d ago
@Larvitz or dual or tri wan opnsense - they make it pretty easy, generally
Show threadLarvitz  4d ago
@gary_alderson true. But doing it manually, even once, gives a good level of understanding, how things work under the hood.
Show threadgary
@Larvitz yes i agree and it can complicate things when you do agg instead of failover etc etc #pf
Mar 23 at 11:34amWeb