From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Martin A. Brown" <mabrown-lartc@securepipe.com>
Date: Wed, 09 Oct 2002 13:32:55 +0000
Subject: Re: [LARTC] ipchains iproute2 and port based routing
Message-Id: <marc-lartc-103417047723253@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-103416308716008@msgid-missing>
In-Reply-To: <marc-lartc-103416308716008@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Marco,

 : ip ro add 0/0 dev eth2 table s-dsl
 : ip ro add 0/0 dev ppp0 table a-dsl

You need to specify a default gateway here, or else you are telling your 
box to route 0/0 directly out the interface--which means it will arp for 
every address on the Internet on your local ethernet!

ip route add 0/0 via x.x.x.x table s-dsl
ip route add 0/0 via x.x.x.x table a-dsl

should do it.  You can use the "dev $DEVNAME" if you wish.

 : The maqerading is also setup:
 : ipchains -A forward -s 192.168.0.0/24 -j MASQ

 : How can i test, if the packtes get marked?

Look at the verbose ipchains output ("ipchains -nvL forward") output to 
see if the usage counter on the particular chain increments.

-Martin

-- 
Martin A. Brown --- SecurePipe, Inc. --- mabrown@securepipe.com




_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/