EFW Support

Support => General Support => Topic started by: svritc_81 on Wednesday 20 January 2016, 07:42:59 pm



Title: Dual WAN Load Balancing with Endian Firewall 3.0.5_B1 Community version
Post by: svritc_81 on Wednesday 20 January 2016, 07:42:59 pm
This how to is to achieve “Dual WAN Load Balancing with Endian Firewall 3.0.5_B1 Community version”

My Lab Setup as below:
<Dev> <IP Address/Sub Netmask> <Interface Description>
eth0=192.168.10.15/24 (LAN Green Interface)
<Dev> <IP Add/SN/GW> <Interface Description>
eth1=10.3.0.61/22/10.3.0.1 (ISP1 Main uplink Red01)
eth2=192.168.15.0/24/192.168.15.1 (ISP2 Bkp uplink Red02)
Note: for all interfaces static ip address (I never tested with dynamic ip addresses as my script wont work for that case)

Here are the steps:
Step 1: Manually configure all uplinks from web interface and later enable ssh to login to shell.

Step 2: remove gateway ip address from both uplinks as:
For ISP1 interface:
vim /var/efw/uplinks/main/settings
DEFAULT_GATEWAY=
For ISP2 interfce:
vim /var/efw/uplinks/uplink1/settings
DEFAULT_GATEWAY=

Step 3: Create new lines in below route table file at the end don’t remove existing lines:
vim /etc/iproute2/rt_tables
1       isp1
2       isp2

Step 4: add new line in sysctl.conf file:
vim /etc/sysctl.conf
net.ipv4.ip_forward = 1
net.ipv4.route.secret_interval = 0

Step 5: Create a startup file in init hooks file which loads on every boot
vim /var/efw/inithooks/start.local
#!/bin/bash
   route del default

   ip route add 10.3.0.0/22 dev eth1 src 10.3.0.61 table isp1
   ip route add default via 10.3.0.1 table isp1
   ip rule add from 10.3.0.61 table isp1

   ip route add 192.168.15.0/24 dev eth2 src 192.168.15.15 table isp2
   ip route add default via 192.168.15.1 table isp2
   ip rule add from 192.168.15.15 table ISP2

   ip route add default scope global nexthop via 10.3.0.1 dev eth1 weight 1 nexthop via 192.168.15.1 dev eth2 weight 1

Step 6: modify the file to execute:
chmod 755 /var/efw/inithooks/start.local


Step 7: Modify system local dns records as per your ISPs:
vim /etc/resolv.conf
nameserver 8.8.8.8
nameserver 4.2.2.2

and reboot EFW that’s all



Title: Re: Dual WAN Load Balancing with Endian Firewall 3.0.5_B1 Community version
Post by: svritc_81 on Thursday 21 January 2016, 04:44:26 pm
Dear Admin,

I am unable to attach while posting due to below error:

An Error Has Occurred!
The attachments upload directory is not writable. Your attachment or avatar cannot be saved.


Title: Re: Dual WAN Load Balancing with Endian Firewall 3.0.5_B1 Community version
Post by: mrkroket on Friday 22 January 2016, 03:08:22 am
I've not seen an admin for years. Better upload it to some filesharing service (google drive, dropbox, onedrive), make the file public and share the link here.