Linux Netfilter discussions
 help / color / mirror / Atom feed
* choose interface based on port
@ 2004-12-19  3:32 Security Support Center
  2004-12-19  4:18 ` John A. Sullivan III
  2004-12-19  9:08 ` Frank Gruellich
  0 siblings, 2 replies; 3+ messages in thread
From: Security Support Center @ 2004-12-19  3:32 UTC (permalink / raw)
  To: netfilter

Hello All,


I'm having some problems on creating something that I thought, would not be so 
dificult.

I have a firewall that holds 4 interfaces, and 2 of them are links to the 
internet.

I want use link 1 for navigation (80 port) and link 2 for all the rest. But I 
can't get it done.

I already tried lots of rule types, search internet, googled, etc but got 
nothing.

Can anybody give me a light on this


Tank you all in advance...


Alberto


^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: choose interface based on port
  2004-12-19  3:32 choose interface based on port Security Support Center
@ 2004-12-19  4:18 ` John A. Sullivan III
  2004-12-19  9:08 ` Frank Gruellich
  1 sibling, 0 replies; 3+ messages in thread
From: John A. Sullivan III @ 2004-12-19  4:18 UTC (permalink / raw)
  To: Security Support Center; +Cc: Netfilter users list

On Sat, 2004-12-18 at 22:32, Security Support Center wrote:
> Hello All,
> 
> 
> I'm having some problems on creating something that I thought, would not be so 
> dificult.
> 
> I have a firewall that holds 4 interfaces, and 2 of them are links to the 
> internet.
> 
> I want use link 1 for navigation (80 port) and link 2 for all the rest. But I 
> can't get it done.
> 
> I already tried lots of rule types, search internet, googled, etc but got 
> nothing.
> 
> Can anybody give me a light on this
> 
> 
> Tank you all in advance...
> 
> 
> Alberto
Hi, Alberto.  I'm afraid I don't have time to look up the details but I
think you will be able to do what you want to do with iproute2 and
packet marking.  The details will be in a file named ip-cref.ps in the
rules section.  On my RedHat 9.0 distribution it is
/usr/share/doc/iproute-2.4.7/ip-cref.ps.  You can also find a brief
slide show on using it with iptables and *swan in the training section
of the ISCS network security management web page at
http://iscs.sourceforge.net

Good luck - John
-- 
John A. Sullivan III
Open Source Development Corporation
Financially sustainable open source development
http://www.opensourcedevel.com



^ permalink raw reply	[flat|nested] 3+ messages in thread
* Re: choose interface based on port
  2004-12-19  3:32 choose interface based on port Security Support Center
  2004-12-19  4:18 ` John A. Sullivan III
@ 2004-12-19  9:08 ` Frank Gruellich
  1 sibling, 0 replies; 3+ messages in thread
From: Frank Gruellich @ 2004-12-19  9:08 UTC (permalink / raw)
  To: netfilter

* Security Support Center <ssc@earth.com.br> 19. Dec 04:
> Hello All,

Hi,

> I have a firewall that holds 4 interfaces, and 2 of them are links to the 
> internet.
> 
> I want use link 1 for navigation (80 port) and link 2 for all the rest. But I 
> can't get it done.

You have to combine netfilter and ip.  Your problem is explained here:
<URL:http://www.lartc.org/howto/lartc.netfilter.html>

HTH,
 regards, Frank.
-- 
Sigmentation fault


^ permalink raw reply	[flat|nested] 3+ messages in thread
end of thread, other threads:[~2004-12-19  9:08 UTC | newest]

Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2004-12-19  3:32 choose interface based on port Security Support Center
2004-12-19  4:18 ` John A. Sullivan III
2004-12-19  9:08 ` Frank Gruellich

This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox