From: Julien <dyna@tri-oxyde.org>
To: netfilter@lists.netfilter.org
Subject: Re: routing mail on a different gateway
Date: Fri, 23 Jul 2004 14:33:09 +0200 [thread overview]
Message-ID: <41010585.3020703@tri-oxyde.org> (raw)
In-Reply-To: <4100CB67.5060507@tri-oxyde.org>
Julien wrote:
> Good Morning,
>
> I have a linux box with two dsl modems on it (connection is done via
> pppoe), I'm trying to route default traffic on the primary connection
> (ppp0) and mail traffic on another one (ppp1).
>
> This traffic should be able to come from the localhost or the lan via
> NAT.
>
> I run Slackware 9.1 (Kernel 2.4.22), recompiled with necessary options
> for using iproute2.
>
> According to the advanced routing howto, I did the following :
>
> iptables −A PREROUTING −i eth0 −t mangle −p tcp −−dport 25 −j MARK
> −−set−mark 1
> iptables −A PREROUTING −i lo −t mangle −p tcp −−dport 25 −j MARK
> −−set−mark 1
>
> I'm not sure whether "lo" is needed.
>
> echo 201 mail.out >> /etc/iproute2/rt_tables
> ip rule add fwmark 1 table mail.out
>
> /sbin/ip route add default via [Second's ISP Gateway] dev ppp1 table
> mail.out
>
> I get no error message, and ip rule ls and ip route show params where
> recorded.
>
> But if I do telnet somemail.server.com 25, I get a timeout and no data
> is sent via ppp1 (seen using ifconfig ppp1 or tcpdump -i ppp1).
>
> I can't figure what can be wrong nor where I should start looking for.
> I also looked in the ip-cref doc and found nothing that could help me.
>
> Feel free to ask me on any point I would have forgotten.
>
> Do you have an idea in order to solve this problem ?
>
> Thanks, in advance !
>
> Julien.
>
Now I changed iptables line to :
iptables −A OUTPUT −t mangle −p tcp −−dport 25 −j MARK −−set−mark 1
in order to mangle packets locally generated, that works better since I
want to route local postfix's traffic.
When I do telnet smtp.someisp.com 25, I see with tcpdump the packets
going out through the interface ppp1 :
14:32:40.693429 62.212.120.196.34515 > 193.252.22.80.smtp: S
4069327741:4069327741(0) win 5808 <mss 1452,sackOK,timestamp 929359
0,nop,wscale 0> (DF) [tos 0x10]
But the problem is that there are originated from 62.212.120.196, which
is the ip of ppp0, not ppp1. So packets can't take the way back.
How can I change the "from" ip of packets that are routed through ppp1 ?
Thanks for your help.
Julien
next prev parent reply other threads:[~2004-07-23 12:33 UTC|newest]
Thread overview: 10+ messages / expand[flat|nested] mbox.gz Atom feed top
2004-07-23 8:25 routing mail on a different gateway Julien
2004-07-23 8:34 ` Julian Gomez
2004-07-23 10:07 ` Julien
[not found] ` <004801c47093$c781ea20$e68923d4@shark.ro>
2004-07-23 10:09 ` Julien
2004-07-23 12:33 ` Julien [this message]
2004-07-23 12:50 ` Rob Sterenborg
2004-07-23 12:56 ` Julien
2004-07-23 13:54 ` Rob Sterenborg
-- strict thread matches above, loose matches on Subject: below --
2004-07-23 12:54 Julien
2004-07-23 8:15 Julien
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=41010585.3020703@tri-oxyde.org \
--to=dyna@tri-oxyde.org \
--cc=netfilter@lists.netfilter.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox