Hello. Is it possible to create different routing policies for "virtual" (as opposed to a real NIC) interfaces? I mean: be able to set up different rules for each of the "dummy0", "dummy1" interfaces, and/or aliases to the "lo" interface like "lo:0", "lo:1", etc. [For example, I assigned a zone (called "priv") to a subnet with address "192.168.67.0/24" to be accessed through the "dummy0" interface but e.g. ACCEPTing ssh traffic to "priv" doesn''t work: the firewall REJECTs the connection.] Does my expectation make any sense? Thanks and best regards, Gilles
Gilles wrote:> Hello. > > Is it possible to create different routing policies > for "virtual" (as opposed to a real NIC) interfaces?Yes. Search the site/documentation for "aliased interfaces". Keith -- Keith Edmunds +---------------------------------------------------------------------+ | Tiger Computing Ltd | Helping businesses make the most of Linux | | "The Linux Company" | http://www.TheLinuxConsultancy.co.uk | +---------------------------------------------------------------------+
Yes, but there are severe limitations. Email me directly fiyou want to see my configs. I have 3 interfaces, (eth0, eth1, eth2) and one virtual (eth0:0). Keith Edmunds wrote:> Gilles wrote: > >> Hello. >> >> Is it possible to create different routing policies >> for "virtual" (as opposed to a real NIC) interfaces? > > > Yes. Search the site/documentation for "aliased interfaces". > > Keith >