All of lore.kernel.org
 help / color / mirror / Atom feed
From: bert hubert <ahu@ds9a.nl>
To: lartc@vger.kernel.org
Subject: Re: [LARTC] Traffic shapping + routing in RH 7.1
Date: Tue, 18 Dec 2001 07:56:48 +0000	[thread overview]
Message-ID: <marc-lartc-100866224818365@msgid-missing> (raw)
In-Reply-To: <marc-lartc-100856061300795@msgid-missing>

On Tue, Dec 18, 2001 at 12:28:58AM -0200, Roberto Campos wrote:

>  We've managed to play with two default gateways equal cost and it works,
> the problems are that we have two diferent ISPs to work with and the box
> send the packets without a simple logic, we just need that packets comming
> from eth0 to go back through eth0. If we ping the firewall from ISP1
> sometimes it sends back the ICMP packet with the ip from the other
> interface and it's not allowed from ISP1 ou 2. That way it don't get past
> their firewalls.

Use policy routing to force answers to go to the right link. This works for
our setup, which looks quite like yours.

> If i can set this up to work telling linux to send back using eth0 the
> packets that comes from eth0 with the ip of eth0 or the internal ip that
> was used to forward in, i'll be happy.

It works by using the source address to determine a gateway. Something like
this:

ip rule add from 1.2.3.4 table 200
ip rule add from 2.2.3.4 table 300
ip route add default via 1.2.3.1 table 200
ip route add default via 2.2.3.1 table 300

(more or less).

Regards,

bert hubert

-- 
http://www.PowerDNS.com          Versatile DNS Software & Services
http://www.tk                              the dot in .tk
Netherlabs BV / Rent-a-Nerd.nl           - Nerd Available -
Linux Advanced Routing & Traffic Control: http://ds9a.nl/lartc

_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://ds9a.nl/lartc/

      parent reply	other threads:[~2001-12-18  7:56 UTC|newest]

Thread overview: 3+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2001-12-17  3:43 [LARTC] Traffic shapping + routing in RH 7.1 Roberto Campos
2001-12-18  2:28 ` Roberto Campos
2001-12-18  7:56 ` bert hubert [this message]

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=marc-lartc-100866224818365@msgid-missing \
    --to=ahu@ds9a.nl \
    --cc=lartc@vger.kernel.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line before the message body. 
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.