From mboxrd@z Thu Jan 1 00:00:00 1970 From: Michael Davidson Date: Thu, 01 Dec 2005 16:23:10 +0000 Subject: [LARTC] Wrong src addr is pkts Message-Id: <438F236E.5010900@bbd.co.za> List-Id: MIME-Version: 1.0 Content-Type: text/plain; charset="us-ascii" Content-Transfer-Encoding: 7bit To: lartc@vger.kernel.org Hi I have a FW dual homed to the Internet via a leased line and most recently by a ADSL line. I have SQUID running on the FW which I want to direct to the ADSL line as well as other traffic from my LAN. After reading the LARTC Howto and the on-line book by Matthew ?? I have my LAN-Internet traffic sorted but the SQUID traffic is a problem. This is my config on a test machine: Chain OUTPUT (policy ACCEPT 47542 packets, 4771K bytes) pkts bytes target prot opt in out source destination 458 44858 MARK tcp -- * * 0.0.0.0/0 0.0.0.0/0 tcp dpts:80:443 MARK set 0x1d # ip rule ls 0: from all lookup local 2000: from all fwmark 0x1d iif lo lookup table2 32766: from all lookup main 32767: from all lookup default # ]# ip route ls table 2 192.168.10.16/28 dev eth1 proto kernel scope link src 192.168.10.30 10.1.1.0/24 dev eth2 proto kernel scope link src 10.1.1.254 10.3.0.0/23 dev eth0 proto kernel scope link src 10.3.1.224 default via 10.1.1.59 dev eth2 src 10.1.1.254 Eth0 is the leased line, eth2 is the ADSL line and eth1 my internal LAN. My default route in the "main" table points to the leased line. With the above config I find that the output of squid is routed to the ADSL line as desired, however, the problem is that the source address in the packets is that of my LL interface. Is there a way to fix this? I've read a lot on the web but I find that I'm now going in circles so any help would be appreciated. Regards Mike.D. _______________________________________________ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc