From mboxrd@z Thu Jan  1 00:00:00 1970
From: "Martin A. Brown" <mabrown-lartc@securepipe.com>
Date: Wed, 09 Oct 2002 18:22:43 +0000
Subject: RE: [LARTC] ipchains iproute2 and port based routing
Message-Id: <marc-lartc-103418796413493@msgid-missing>
List-Id: <lartc.vger.kernel.org>
References: <marc-lartc-103416308716008@msgid-missing>
In-Reply-To: <marc-lartc-103416308716008@msgid-missing>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
To: lartc@vger.kernel.org

Aigh!  I think I may have spotted the problem.

Your routing table number 10 doesn't know anything about 192.168.0.0/24 
does it?

Make sure that each routing table has routes for the destinations it is 
supposed to be able to reach!

 : ipchains -A input -p icmp -s 192.168.0.0/24 -m 2
 : ip ru add fwmark 2 table 10
 : ip route add default via x.x.x.x dev eth2 table 10
 : ipchains -A forward -s 192.168.0.0/24 -j MASQ
 : * x.x.x.x is the default gateway!

-Martin

-- 
Martin A. Brown --- SecurePipe, Inc. --- mabrown@securepipe.com


_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/