Home
Help
Search
Login
Register
OPNsense Forum
»
Archive
»
22.1 Legacy Series
»
Multipath with FRR + OSPF + ECMP
« previous
next »
Print
Pages: [
1
]
Author
Topic: Multipath with FRR + OSPF + ECMP (Read 3571 times)
MarceloAlm
Newbie
Posts: 5
Karma: 0
Multipath with FRR + OSPF + ECMP
«
on:
May 25, 2022, 03:14:08 pm »
Hello,
I am creating a network between two offices, with two separate links, and using two opnsense connected via GRE tunnel: I created a route for each link, using the corresponding gateway, and distributed the routes with FRR+OSPF. This part is working fine, I can see both routes with "netstat -r". The problem is that the system chooses one of the routes as preferred and does not balance between them by ECMP.
I only managed to balance it through a rule in the firewall, but this invalidates the use of OSPF, and I did not intend to use opnsense as a firewall on this network, only as a router, since all types of traffic are authorized in this network.
Is there a setting I'm missing?
Logged
Patrick M. Hausen
Hero Member
Posts: 6799
Karma: 571
Re: Multipath with FRR + OSPF + ECMP
«
Reply #1 on:
May 25, 2022, 03:36:57 pm »
Check if net.route.multipath is enabled - it should be. Documentation is still sparse, you could try to also enable net.route.hash_outbound. Both with sysctl.
Edit: and BTW - when testing - multipath is per flow, not per packet!
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do.
(Isaac Asimov)
MarceloAlm
Newbie
Posts: 5
Karma: 0
Re: Multipath with FRR + OSPF + ECMP
«
Reply #2 on:
May 25, 2022, 07:03:46 pm »
checked the conf and they are enabled:
# sysctl net.route
net.route.netisr_maxqlen: 256
net.route.ipv6_nexthop: 1
net.route.multipath: 1
net.route.hash_outbound: 1
I am monitoring the traffic for a few hours, and it is not alternanting the ECMP route
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Multipath with FRR + OSPF + ECMP
«
Reply #3 on:
May 25, 2022, 08:39:10 pm »
Routing table please
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
MarceloAlm
Newbie
Posts: 5
Karma: 0
Re: Multipath with FRR + OSPF + ECMP
«
Reply #4 on:
May 25, 2022, 09:40:52 pm »
Quote from: mimugmail on May 25, 2022, 08:39:10 pm
Routing table please
making some tests, I found that is some cache of the GW used to access the hosts based on source:
root@rt-wan:/ # traceroute 10.70.70.1
traceroute to 10.70.70.1 (10.70.70.1), 64 hops max, 40 byte packets
1 172.16.102.2 (172.16.102.2) 19.743 ms 21.152 ms 19.547 ms
root@rt-wan:/ # traceroute 10.70.70.4
traceroute to 10.70.70.4 (10.70.70.4), 64 hops max, 40 byte packets
1 172.16.101.2 (172.16.101.2) 27.260 ms 31.595 ms 32.289 ms
root@rt-wan:/ # traceroute 10.70.70.4
traceroute to 10.70.70.4 (10.70.70.4), 64 hops max, 40 byte packets
1 172.16.101.2 (172.16.101.2) 21.710 ms 21.000 ms 26.908 ms
root@rt-wan:/ # traceroute 10.70.70.1
traceroute to 10.70.70.1 (10.70.70.1), 64 hops max, 40 byte packets
1 172.16.102.2 (172.16.102.2) 21.986 ms 20.134 ms 21.027 ms
removed some unnecessary data:
# netstat -r4
Routing tables
Internet:
Destination Gateway Flags Netif Expire
default 10.x.x.x UGS em0
rt-wan link#1 UHS lo0
10.20.0.161 link#1 UH lo0
10.20.0.162 link#1 UH lo0
10.70.0.0/16 172.16.102.2 UG1 gre1
10.70.0.0/16 172.16.101.2 UG1 gre0
10.70.0.151 10.20.0.50 UGHS em0
10.70.0.152 10.20.0.90 UGHS em0
localhost link#4 UH lo0
172.16.101.1 link#7 UHS lo0
172.16.101.2 link#7 UH gre0
172.16.102.1 link#8 UHS lo0
172.16.102.2 link#8 UH gre1
Logged
mimugmail
Hero Member
Posts: 6766
Karma: 494
Re: Multipath with FRR + OSPF + ECMP
«
Reply #5 on:
May 25, 2022, 09:51:15 pm »
Doesnt both looks good?
Logged
WWW:
www.routerperformance.net
Support plans:
https://www.max-it.de/en/it-services/opnsense/
Commercial Plugins (German):
https://opnsense.max-it.de/
MarceloAlm
Newbie
Posts: 5
Karma: 0
Re: Multipath with FRR + OSPF + ECMP
«
Reply #6 on:
May 25, 2022, 10:02:28 pm »
No, my traffic is not balanced between tunnels, only one is being used.
Logged
Patrick M. Hausen
Hero Member
Posts: 6799
Karma: 571
Re: Multipath with FRR + OSPF + ECMP
«
Reply #7 on:
May 26, 2022, 12:29:46 am »
And you do have multiple streams from multiple source IP addresses?
Logged
Deciso DEC750
People who think they know everything are a great annoyance to those of us who do.
(Isaac Asimov)
MarceloAlm
Newbie
Posts: 5
Karma: 0
Re: Multipath with FRR + OSPF + ECMP
«
Reply #8 on:
May 26, 2022, 08:01:56 pm »
Quote from: pmhausen on May 26, 2022, 12:29:46 am
And you do have multiple streams from multiple source IP addresses?
yes, about 100 computers connected on each router
Logged
Print
Pages: [
1
]
« previous
next »
OPNsense Forum
»
Archive
»
22.1 Legacy Series
»
Multipath with FRR + OSPF + ECMP