WAN Balancer with 3x ADSL PPPoE Connections

[cawzez]

I am in the process of resetting up our Untangle on a new server to support 3-6 Internet connections with WAN Balancer (we currently have just 1 connection on the current server)

The new server will initially be setup like this:
<< Network map is attached as I cant post pictures in posts >>

• 3 ADSL Lines connect to 3x Billion ADSL Routers which handle the PPPoE Connection
o ADSL1’s Billion is on 192.168.11.254/24
o ADSL2’s Billion is on 192.168.10.254/24
o ADSL3’s Billion is on 192.168.9.254/24
• Each Billion Router connects to it’s own VLAN on a HP V1910-16G Layer 3 Switch
• There is a wireless LAN link connecting to another HP V1910-16G Layer 3 Switch with the same VLAN programming
• 3 Cables connect each VLAN from the HP Switch to the Untangle Servers 3 WAN ports.

Unfortunately when I setup Untangle in Bridge or Router mode it is unable to find an internet connection on any of the Eth0/1/2 ports.
If I give each port a static in the correct range the Untangle server is unable to ping the Billion routers.

If I connect a laptop into any one of the VLAN’s with the exact same LAN settings it connects to & pings the Billion Routers & gets internet access.

IT seems to me like the Untangle server wont access anything over the VLAN links?
Note that the Untangle server does not need to transmit VLAN tagging as it just receives the connection from the switches VLAN. Any traffic sent by Untangle back to the switch would be tagged by the switch & transmitted back to the other switch to the correct VLAN.

Does anyone have any suggestions for getting this system working?

[AdamB]

I am in the process of resetting up our Untangle on a new server to support 3-6 Internet connections with WAN Balancer (we currently have just 1 connection on the current server)

The new server will initially be setup like this:
<< Network map is attached as I cant post pictures in posts >>

• 3 ADSL Lines connect to 3x Billion ADSL Routers which handle the PPPoE Connection
o ADSL1’s Billion is on 192.168.11.254/24
o ADSL2’s Billion is on 192.168.10.254/24
o ADSL3’s Billion is on 192.168.9.254/24
• Each Billion Router connects to it’s own VLAN on a HP V1910-16G Layer 3 Switch
• There is a wireless LAN link connecting to another HP V1910-16G Layer 3 Switch with the same VLAN programming
• 3 Cables connect each VLAN from the HP Switch to the Untangle Servers 3 WAN ports.

Unfortunately when I setup Untangle in Bridge or Router mode it is unable to find an internet connection on any of the Eth0/1/2 ports.
If I give each port a static in the correct range the Untangle server is unable to ping the Billion routers.

If I connect a laptop into any one of the VLAN’s with the exact same LAN settings it connects to & pings the Billion Routers & gets internet access.

IT seems to me like the Untangle server wont access anything over the VLAN links?
Note that the Untangle server does not need to transmit VLAN tagging as it just receives the connection from the switches VLAN. Any traffic sent by Untangle back to the switch would be tagged by the switch & transmitted back to the other switch to the correct VLAN.

Does anyone have any suggestions for getting this system working?

I know untangle doesn't play nice with VLAN's but I don't have any direct experience.

[jcoehoorn]

Untangle destroys and rebuilds/re-transmits each packet that passes through it. This process does not reproduce any vlan tag you might need.

I suggest setting up your ADSL routers in bridge mode. They will still handle the PPPoE link, but now they will pass their public internet IP directly to your external ports on the untangle box. Again: move your untangle box and connect it directly to the adsl routers. Untangle should be set up in router mode, with a single connection back to your switch.

Now you can do whatever you want on your internal network, no vlans required. If you want multiple vlans, go right ahead. They'll just be internal only, and your core switch --not untangle-- will do the routing between them. To work with untangle, you need to edit utangle's internal interface and routing table to have an IP alias and route for each vlan, and make sure the switch port leading to untangle is tagged for all vlans that will access the internet. Then, in conjunction with policy manager, you can also easily have untangle make filtering/protection policy decisions based on vlan (subnet).