On Sun, Jun 14, 2009 at 11:28:31PM -0500, Karl O. Pinc wrote: > Hi, > > It occurs to me that multipath routing > (http://www.openbsd.org/faq/faq6.html#Multipath) > might not play nicely with ftp-proxy on a firewall > because passive ftp sessions could multiplex the > data and control connections via different ISPs. > My assumption here is that if you're using > multipath routing and 2 ISPs then your NATting, > so the ftp server on the Internet would see > the control connection from one ISP and the > data connection from another, leading to failure. > > Is this a correct analysis or am I missing something? >
This could only happen if you created such a freak setup that only a few people manage to setup. The multipath code uses a hash over src and destination IP to decide wich link it will take. So it should be almost impossible to get a mixup of ftp session to the same host. -- :wq Claudio
