Thanks!
I have another question though.
Suppose all the P2P traffic will follow the default route.
The POSTROUTING chain (where the SNAT is performed) is the last one in the
kernel.
Can I make the P2P be SNAT-ed on a different IP? Or this is the same... The
connection is already established, when IPP2P starts to mark packets?
I read somewhere in the documentation:
"Edonkey is better matched by IPP2P and should not work anymore at all (no
searches, no connects, no downloads)".
So, no connection for eDonkey... Aren''t those packets the first of a
TCP
connection?
Thanks very much,
Mihai Vlad
-----Original Message-----
From: Eicke Friedrich [mailto:tady@gmx.net]
Sent: Sunday, May 30, 2004 12:40 PM
To: Mihai Vlad
Subject: Re: Route P2P on separate link
Hi,
for routing decisions you can only use attributes that are already
there with the very first packet of a connection. These is usually OSI
Layer 2/3 data (IP adresses, port numbers).
IPP2P is using OSI Layer 7 pattern matching - it searches through the
payload of TCP packets. As TCP packets can only carry payload if the
connection is already established (and therefore the routing decision
is already done) you cannot use IPP2P for routing packets. IPP2P will
never match the very first packet (SYN) of a TCP connection but this
is packet where the routing decision is made.
Regards,
Eicke.
Mihai Vlad wrote:> Hello,
>
> Is there a way to route p2p traffic on a separate ISP connection, just as
> you would choose a separate connection for http traffic?
>
> I tried all sorts of setups based on:
> http://www.braindump.dk/en/wiki/?wikipage=PolicyRouting but with no luck.
>
> Please help :)
>
> (ipp2p is up and running)
>
>
>
_______________________________________________
LARTC mailing list / LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/