From mboxrd@z Thu Jan  1 00:00:00 1970
From: Javier Suarez <listas@slater-i.com>
Date: Tue, 28 Mar 2006 11:23:59 +0000
Subject: [LARTC] IP route balance problem
Message-Id: <44291CCF.40007@slater-i.com>
List-Id: <lartc.vger.kernel.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Hello

Im having a problem similar to sawar

Here is my configuration


                                     --------------eth1---192.168.1.128----------    -------------192.168.1.1  ISP router 1
                                     |    my	|										
         ---Eth0---192.168.10.157----|		|										   	
                                     |    linux	|										   
                                     |										   
                                      ------------eth2---192.168.254.128-----    ----------------192.168.254.254 ISP router 2


What I want to do is a balance charging and itsnt working

The Kernel version es 2.6.14
root@enrutizador:~# uname -a
Linux enrutizador 2.6.12-9-386 #1 Mon Oct 10 13:14:36 BST 2005 i686 
GNU/Linux

Eth1 and Eth2 are well coneccted to Routers...

root@enrutizador:~# ping 192.168.1.1
PING 192.168.1.1 (192.168.1.1) 56(84) bytes of data.
64 bytes from 192.168.1.1: icmp_seq=1 ttl8 time=0.726 ms
root@enrutizador:~# ping 192.168.254.254
PING 192.168.254.254 (192.168.254.254) 56(84) bytes of data.
64 bytes from 192.168.254.254: icmp_seq=1 ttl%5 time=0.802 ms


And here is the script I use to do it work...

#!/bin/sh

P1_NET2.168.1.0/24
IF1=eth1
IP12.168.1.128
P12.168.1.1

P2_NET2.168.254.0/24
IF2=eth2
IP22.168.254.128
P22.168.254.254

ip addr add $IP1/24 brd + dev $IF1
ip addr add $IP2/24 brd + dev $IF2

ip link set $IF1 up
ip link set $IF2 up

ip route add $P1_NET dev $IF1 src $IP1 table T1
ip route add default via $P1 table T1

ip route add $P2_NET dev $IF2 src $IP2 table T2
ip route add default via $P2 table T2

ip route add $P1_NET dev $IF1 src $IP1
ip route add $P2_NET dev $IF2 src $IP2

ip route add equalize default nexthop via 192.168.254.254 dev eth2 
nexthop via 192.168.1.1 dev eth1

ip rule add from $IP1 table T1
ip rule add from $IP2 table T2


I have read in books and faqs and this should enough to do balance 
charging working, but isn't.

The problem is the same than sawar, src ips are wrong...or at least 
stranges  :-/

The configuration from the boot is as follow
Clear system after boot
root@enrutizador:~# ip route ls
192.168.10.0/24 dev eth0  proto kernel  scope link  src 192.168.10.157

After execute the configuration script
root@enrutizador:~# ip route ls
192.168.1.0/24 dev eth1  proto kernel  scope link  src 192.168.1.128
192.168.10.0/24 dev eth0  proto kernel  scope link  src 192.168.10.157
192.168.254.0/24 dev eth2  proto kernel  scope link  src 192.168.254.128
default equalize
        nexthop via 192.168.254.254  dev eth2 weight 1
        nexthop via 192.168.1.1  dev eth1 weight 1

The problem like sawar...
root@enrutizador:~# for x in $(seq 1 10); do ip r g 130.206.1.$x; done
130.206.1.1 via 192.168.1.1 dev eth1  src 192.168.1.128
    cache  mtu 1500 advmss 1460 hoplimit 64
130.206.1.2 via 192.168.1.1 dev eth1  src 192.168.254.128
    cache  mtu 1500 advmss 1460 hoplimit 64
130.206.1.3 via 192.168.1.1 dev eth1  src 192.168.254.128
    cache  mtu 1500 advmss 1460 hoplimit 64
130.206.1.4 via 192.168.1.1 dev eth1  src 192.168.1.128
    cache  mtu 1500 advmss 1460 hoplimit 64
130.206.1.5 via 192.168.1.1 dev eth1  src 192.168.254.128
    cache  mtu 1500 advmss 1460 hoplimit 64
130.206.1.6 via 192.168.1.1 dev eth1  src 192.168.1.128
    cache  mtu 1500 advmss 1460 hoplimit 64
130.206.1.7 via 192.168.1.1 dev eth1  src 192.168.254.128
    cache  mtu 1500 advmss 1460 hoplimit 64
130.206.1.8 via 192.168.1.1 dev eth1  src 192.168.1.128
    cache  mtu 1500 advmss 1460 hoplimit 64
130.206.1.9 via 192.168.1.1 dev eth1  src 192.168.254.128
    cache  mtu 1500 advmss 1460 hoplimit 64
130.206.1.10 via 192.168.1.1 dev eth1  src 192.168.1.128
    cache  mtu 1500 advmss 1460 hoplimit 64


The only ips that repond to the Pings  are the ones where via and src 
are in the same net

I have tryed too the solution you gave to sawar and activate the nat

root@enrutizador:/proc/sys/net/ipv4# modprobe iptable_nat
root@enrutizador:/proc/sys/net/ipv4# iptables -t nat -A POSTROUTING -s 
192.168.254.128 -o eth1 -j SNAT --to-source 192.168.1.128
root@enrutizador:/proc/sys/net/ipv4# iptables -t nat -A POSTROUTING -s 
192.168.1.128 -o eth2 -j SNAT --to-source 192.168.254.128


But itsn't working yet

root@enrutizador:~# iptables -t nat -L
Chain PREROUTING (policy ACCEPT)
target     prot opt source               destination

Chain POSTROUTING (policy ACCEPT)
target     prot opt source               destination
SNAT       all  --  192.168.254.128      anywhere            
to:192.168.1.128
SNAT       all  --  192.168.1.128        anywhere            
to:192.168.254.128

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination


What Im doing bad please? or what is wrong?

A lot of thanks for at least try to undesrtand the mail :-)

Javier Suarez

_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc