* Host not reachable problem @ 2006-08-01 16:43 Steffen Heil 2006-08-01 16:54 ` Andre Grueneberg 0 siblings, 1 reply; 5+ messages in thread From: Steffen Heil @ 2006-08-01 16:43 UTC (permalink / raw) To: netfilter [-- Attachment #1: Type: text/plain, Size: 1058 bytes --] Hi I have a server, which has 68 IPs. 4 for it's own network interfaces and a network of 64 addresses for xen domains and vpn. Now, only some of these domains are live and only some VPN clients online. As such, only some IPs will be available, ohters will not. For every available IP there is an entry in the routing table like this: <singleIP> 0.0.0.0 255.255.255.255 UH 0 0 0 <virtualinterface> Moreover there is a default route: 0.0.0.0 <ispgateway> 0.0.0.0 UG 0 0 0 eth0 ip_forward contains 1 Now, packets for IPs that are offline right now, are routed to the main ip of my server, which is suppost to forward them. This works for systems that are online. However, packets for hosts wich are not online are routed by via the default route. What I would need is a routing table entry which routes my /26-network to "host not reachable" and which has a lower priority than my explizit routing rules. How can I do that? Regards, Steffen BTW: Where can I set ip_forward for the next reboot? [-- Attachment #2: smime.p7s --] [-- Type: application/x-pkcs7-signature, Size: 3055 bytes --] ^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: Host not reachable problem 2006-08-01 16:43 Host not reachable problem Steffen Heil @ 2006-08-01 16:54 ` Andre Grueneberg 2006-08-02 8:21 ` Steffen Heil 0 siblings, 1 reply; 5+ messages in thread From: Andre Grueneberg @ 2006-08-01 16:54 UTC (permalink / raw) To: netfilter Steffen Heil wrote: > What I would need is a routing table entry which routes my /26-network to > "host not reachable" and which has a lower priority than my explizit routing > rules. > How can I do that? ip route add unreachable <network>/26 Your host routes are more specific so they overrule this network rule. Andre -- RECOVER.COM: a little slice of hell. ^ permalink raw reply [flat|nested] 5+ messages in thread
* RE: Host not reachable problem 2006-08-01 16:54 ` Andre Grueneberg @ 2006-08-02 8:21 ` Steffen Heil 2006-08-02 8:35 ` Gáspár Lajos 2006-08-02 9:13 ` Gáspár Lajos 0 siblings, 2 replies; 5+ messages in thread From: Steffen Heil @ 2006-08-02 8:21 UTC (permalink / raw) To: 'Andre Grueneberg', netfilter [-- Attachment #1: Type: text/plain, Size: 206 bytes --] Hi > ip route add unreachable <network>/26 I didn't realize there was a "unreachable" target... Thanks a lot. BTW: Is there a way to make this and ip_forward permanent (for reboots)? Regrads, Steffen [-- Attachment #2: smime.p7s --] [-- Type: application/x-pkcs7-signature, Size: 3055 bytes --] ^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: Host not reachable problem 2006-08-02 8:21 ` Steffen Heil @ 2006-08-02 8:35 ` Gáspár Lajos 2006-08-02 9:13 ` Gáspár Lajos 1 sibling, 0 replies; 5+ messages in thread From: Gáspár Lajos @ 2006-08-02 8:35 UTC (permalink / raw) To: Netfilter IPtableMailinglist > > Hi > > >> ip route add unreachable <network>/26 >> > > I didn't realize there was a "unreachable" target... > Thanks a lot. > > BTW: Is there a way to make this and ip_forward permanent (for reboots)? > > With a startup script -> YES ! > Regrads, > Steffen > ^ permalink raw reply [flat|nested] 5+ messages in thread
* Re: Host not reachable problem 2006-08-02 8:21 ` Steffen Heil 2006-08-02 8:35 ` Gáspár Lajos @ 2006-08-02 9:13 ` Gáspár Lajos 1 sibling, 0 replies; 5+ messages in thread From: Gáspár Lajos @ 2006-08-02 9:13 UTC (permalink / raw) To: Netfilter IPtableMailinglist > > Hi > > >> ip route add unreachable <network>/26 >> > > I didn't realize there was a "unreachable" target... > Thanks a lot. > > BTW: Is there a way to make this and ip_forward permanent (for reboots)? > > With a startup script -> YES ! > Regrads, > Steffen > ^ permalink raw reply [flat|nested] 5+ messages in thread
end of thread, other threads:[~2006-08-02 9:13 UTC | newest] Thread overview: 5+ messages (download: mbox.gz follow: Atom feed -- links below jump to the message on this page -- 2006-08-01 16:43 Host not reachable problem Steffen Heil 2006-08-01 16:54 ` Andre Grueneberg 2006-08-02 8:21 ` Steffen Heil 2006-08-02 8:35 ` Gáspár Lajos 2006-08-02 9:13 ` Gáspár Lajos
This is an external index of several public inboxes, see mirroring instructions on how to clone and mirror all data and code used by this external index.