From: "Bryan Nolen" <reveng@arc.net.au>
To: lartc@vger.kernel.org
Subject: RE: [LARTC] email/ftp over one connection, all else over second connection
Date: Mon, 08 Mar 2004 04:40:53 +0000 [thread overview]
Message-ID: <001301c404c7$8b6ce8b0$fa01a8c0@unwired> (raw)
In-Reply-To: <000b01c404c3$7f8a2430$fa01a8c0@unwired>
Just thought of a problem doing that - the email server is on the
gateway/firewall box itself....
Can SNAT still be used in this case?
I.e.:
iptables -t nat -A POSTROUTING -o $extIF --sport 25 -d 0/0 -j SNAT --to
$PriIP
iptables -t nat -A POSTROUTING -o $extIF --dport 25 -d 0/0 -j SNAT --to
$PriIP
> -----Original Message-----
> From: xerox@foonet.net [mailto:xerox@foonet.net]
> Sent: Monday, 8 March 2004 3:21 PM
> To: Bryan Nolen
> Subject: Re: [LARTC] email/ftp over one connection, all else
> over second connection
>
>
> If the box is doing NAT, which I assume it is, all you have
> to do is SNAT
> and for certain ports like web and such make it use the
> source ip of the
> asym link and so on.. should be real simple in that config :>
>
>
> On Mon, 8 Mar 2004, Bryan Nolen wrote:
>
> > Hi all,
> >
> > Just wondering what the easiest way to do the following is:
> >
> > We have two connections (routed ADSL) - a 512k/512k
> symmetrical and a
> > 1.5M/256k asymmetrical, what I would like is for all email
> and FTP traffic
> > to use the symmetrical link, and all other internet traffic
> to use the
> > asymmetrical link. The symmetrical link is already set as
> the primary MX, so
> > source routing problems aside - how can this be done?
> >
> > Using IPTables ROUTE target? using IPRoute2 (ideally)?
> >
> > The reasons for doing it this way is this company needs a
> reliable email and
> > ftp channel, but they also do a lot of "surfing" so I would
> like the isolate
> > the two distinct traffic types in order to optimise traffic flow.
> >
> > All help is welcome.
> >
> > -Bryan
> >
> > Bryan Nolen
> > Lead Developer, Arc.Net.Au
> > Ph: 03 9499 2929
> > Fax: 03 9854 5436
> > Mobile: 0402 022 292
> > Email: bryan@arcnet.com.au or reveng@arc.net.au
> > http://Arc.Net.AU
> > http://cdonline.com.au
> >
> > _______________________________________________
> > LARTC mailing list / LARTC@mailman.ds9a.nl
> > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO:
http://lartc.org/
>
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
next prev parent reply other threads:[~2004-03-08 4:40 UTC|newest]
Thread overview: 3+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-03-08 4:11 [LARTC] email/ftp over one connection, all else over second connection Bryan Nolen
2004-03-08 4:40 ` Bryan Nolen [this message]
2004-03-09 2:33 ` Roy
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='001301c404c7$8b6ce8b0$fa01a8c0@unwired' \
--to=reveng@arc.net.au \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.