I''m asking this question for the sysadmin where I work. Will Shorewall do this? Joe, I am looking for a linux router that will look at the source IP (not the destination) and then forward the packet out a specific interface to another host. For example if a packet comes in to the linux router from NET-A it will forward the packet out INTERFACE-A to HOST-A. If a packet comes in to the linux router from NET-B it will forward the packet out INTERFACE-B to HOST-B. Thanks in advance. -- Joe *** I can only please one person a day. Today is not your day and tomorrow doesn''t look good either. ***
--On Thursday, January 23, 2003 1:28 PM -0400 Joe Gofton <jgofton@danicar.net> wrote:> I''m asking this question for the sysadmin where I work. > Will Shorewall do this? > > > Joe, > > I am looking for a linux router that will look at the source IP (not the > destination) and then forward the packet out a specific interface to > another host. For example if a packet comes in to the linux router from > NET-A it will forward the packet out INTERFACE-A to HOST-A. If a packet > comes in to the linux router from NET-B it will forward the packet out > INTERFACE-B to HOST-B. >Shorewall can be a part of such a scheme although Shorewall isn''t necessary if there is no firewalling requirement -- see http://www.shorewall.net/Shorewall_Squid_Usage.html for an example of how to set up multiple routing tables and to direct packets to one or the other. More information on policy routing is available in the LARTC Howto (linked from the "Useful Links" page on the Shorewall web site). -Tom -- Tom Eastep \ Shorewall - iptables made easy AIM: teastep \ http://www.shorewall.net ICQ: #60745924 \ teastep@shorewall.net
Hey Tom. Just wanted to say thanks. Shorewall just helped us get out of a huge jam...even though the jam is only going to last 3 weeks. Shorewall helped us do something Cisco''s couldn''t. On a personal note, all the bragging I have been doing about shorewall since I started using it the past summer is finally going to be noticed. :-) Debian Linux as well.> > > --On Thursday, January 23, 2003 1:28 PM -0400 Joe Gofton > <jgofton@danicar.net> wrote: > >> I''m asking this question for the sysadmin where I work. >> Will Shorewall do this? >> >> >> Joe, >> >> I am looking for a linux router that will look at the source IP (not >> the destination) and then forward the packet out a specific interface >> to another host. For example if a packet comes in to the linux router >> from NET-A it will forward the packet out INTERFACE-A to HOST-A. If a >> packet comes in to the linux router from NET-B it will forward the >> packet out INTERFACE-B to HOST-B. >> > > Shorewall can be a part of such a scheme although Shorewall isn''t > necessary if there is no firewalling requirement -- see > http://www.shorewall.net/Shorewall_Squid_Usage.html for an example of > how to set up multiple routing tables and to direct packets to one or > the other. More information on policy routing is available in the LARTC > Howto (linked from the "Useful Links" page on the Shorewall web site). > > -Tom > -- > Tom Eastep \ Shorewall - iptables made easy > AIM: teastep \ http://www.shorewall.net > ICQ: #60745924 \ teastep@shorewall.net-- Joe *** I can only please one person a day. Today is not your day and tomorrow doesn''t look good either. ***
--On Wednesday, January 29, 2003 10:01 AM -0400 Joe Gofton <jgofton@danicar.net> wrote:> Just wanted to say thanks. Shorewall just helped us get out of a huge > jam...even though the jam is only going to last 3 weeks. Shorewall helped > us do something Cisco''s couldn''t. > > On a personal note, all the bragging I have been doing about shorewall > since I started using it the past summer is finally going to be noticed. > :-) > Debian Linux as well. >Thanks, Joe! -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net