From: Markus Schulz <msc@antzsystem.de>
To: lartc@vger.kernel.org
Subject: Re: [LARTC] Balancing multiple connections and NAT
Date: Thu, 23 Feb 2006 23:41:22 +0000 [thread overview]
Message-ID: <200602240041.22508.msc@antzsystem.de> (raw)
In-Reply-To: <17406.2440.239945.166270@mail.linux-delhi.org>
Am Donnerstag, 23. Februar 2006 20:14 schrieb Raj Mathur:
> Hi,
>
> I have a client connected to the 'net through 3 ISP's. Have set up a
> Linux box to do routing and load sharing for the 3 connections. A
> fourth interface is connected to the LAN with private IP addresses.
> Am using iptables to SNAT traffic to the appropriate IP depending on
> the interface the packet gets routed onto. The setup looks something
> like this:
>
> Interface IP Gateway Table Network
> --------- -- ------- ----- -------
> intA ipA gwA tableA netA
> intB ipB gwB tableB netB
> intC ipC gwC tableC netC
> [intD is the LAN interface]
> intD ipD (private) no gateway global netD
>
> This works fine most of the time, except that once in a while (every
> 5-10 minutes or so) packets going out on (e.g.) intB suddenly start
> getting NAT'ed to source address ipA (i.e. the address of another
> interface). Obviously this plays hell with the existing connections
> on that link!
you need a patch for NAT processing with multiple gateways. this will
then save the routing information for each connection inside NAT
structures, so that each packet of an established connection will be
get routed over the same gateway. you can find the patches here:
http://www.ssi.bg/~ja/#routes
please read the guides (nano howto or dgd-usage) carefully.
--
Markus Schulz
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
next prev parent reply other threads:[~2006-02-23 23:41 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2006-02-23 19:26 [LARTC] Balancing multiple connections and NAT Raj Mathur
2006-02-23 19:41 ` Edmundo Carmona
2006-02-23 20:25 ` Nataniel Klug
2006-02-23 23:41 ` Markus Schulz [this message]
2006-02-24 15:20 ` Sebastian Bork
2006-02-24 18:54 ` Raj Mathur
2006-02-24 21:22 ` Sebastian Bork
2006-02-27 20:27 ` Sebastian Bork
2006-03-05 14:27 ` Andreas Hasenack
2006-03-06 17:29 ` Jody Shumaker
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=200602240041.22508.msc@antzsystem.de \
--to=msc@antzsystem.de \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.