[ale] Routing out to multiple NIC's

James P . Kinney III jkinney at localnetsolutions.com
Fri Feb 16 10:54:48 EST 2001


The section on routing by firewall mark looks like the info I was needing.
So another kernel compile to add firewall marking and back to trashing my
network.

Many thanks!


On Fri, 16 Feb 2001 10:30:01 Stephan Uphoff wrote:

Take a look at policy based routing.

http://www.compendium.com.ar/policy-routing.txt


> I'm spinning my gears on this. Gateway machine has 3 connected NIC's. eth0
is
> local LAN only, eth1 is static IP Internet, eth2 is high-speed DHCP
Internet.
> Goal: Allow incomming packets on eth1 only (easy) and return packets out on
> eth1 only (not working, all outbound packets dropped)
> Not allow incomming packets on eth2 (easy) and force all eth0 traffic out
eth2
> (works OK if default route eth2)
> All traffic originating from local host must go out eth2 (problem, only
works
> with defaut route eth2).
> 
> It looks like a routing problem. I can see ICMP packets arriving in on eth1
> (log files getting crowded) then they go through the OUTPUT table and get
dropped.
> Somewhere the routing is trying to send them out the default route of eth2
with
> eth1 addressing (I think). If I delete eth2 default route, no traffic uses
eth2
> (But my mail works ;)
> 
> I've been reading HOW-TO's and books 'till I'm nearly blind. It seems like
> iptables should be able to handle this OK if the routing were not so
dependent on
> default gateways.
> 
> Suggestions, pointers, assistance are elcome and encouraged. Comments
> concerning my low sanity are redundant.
> 
> -- 
> James P. Kinney III   \Changing the mobile computing world/
> President and COO      \          one Linux user         /
> Local Net Solutions,LLC \           at a time.          /
> 770-493-8244             \.___________________________./
> --
> To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message
body.
> 


--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.

-- 
James P. Kinney III   \Changing the mobile computing world/
President and COO      \          one Linux user         /
Local Net Solutions,LLC \           at a time.          /
770-493-8244             \.___________________________./
--
To unsubscribe: mail majordomo at ale.org with "unsubscribe ale" in message body.





More information about the Ale mailing list