Hi,
Network:
LAN 1 Con 1 LAN 2
========== Router 1 -------------------- Router 2 ========== Computer 3
| |
------------------------------------
Con 2
LAN 1: 192.168.1.0/24
LAN 2: 192.168.2.0/24
CON 1: 192.168.11.0/24
CON 2: 192.168.12.0/24
Router 1 (Lan1): 192.168.1.1
Router 1 (Con1): 192.168.11.1
Router 1 (Con2): 192.168.12.1
Router 2 (Lan2): 192.168.2.1
Router 2 (Con1): 192.168.11.2
Router 2 (Con2): 192.168.12.2
Computer 3: 192.168.2.100
Routes (Router1):
192.168.2.0/24 -> 192.168.12.2
Routes (Router2):
192.168.1.0/24 -> 192.168.12.1
IP Rule (both Router)
FW-Mark 1 -> table "con1"
Table "con1" (Router1):
192.168.2.0/24 -> 192.168.11.2
Table "con1" (Router2):
192.168.1.0/24 -> 192.168.11.1
iptables -t mangle PREROUTING (both Router)
Port 22, 3389 -> mark 1
iptables -t mangle OUTPUT (both Router)
all -> mark 1
Explanation:
I have 2 routers with 2 connections between them (a fast and a slow line). I
want, that all traffic but interactive traffic go over the slow line.
Problem
If i try to use snmp from Computer 3 to Router 1 (192.168.11.1) the reply
packets will have the source adress 192.168.12.1 and the firewall on Router 2
will not accept them. Want do i wrong?
Thanks for any help!
Mit freundlichen Grüßen
P. Schnurbus
Pascal Schnurbus
IT-Services Phone: +49-231-9792-138
PRO DV Software AG FAX: +49-231-9792-200
Hauert 6 mailto:pascal.schnurbus@prodv.de
44227 Dortmund http://www.prodv.de