Hi,
I have two DSL line from the different provider connected to my Linux
Router Firewall. Server_A is behind the Linux Router Firewall.
DSL0 --
| ---- LINUX_ROUTER_FW -- SERVER_A
DSL1 --
I have the following IPTABLES command to make incoming access to Server
A''s web service throught port 82 as below: -
$IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 82 -j DNAT --to
10.59.2.2:80
$IPTABLES -t nat -A PREROUTING -i eth2 -p tcp --dport 82 -j DNAT --to
10.59.2.2:80
The problem is sometimes when I access the Server A''s web service using
the following link below, after like few minutes...it cannot be accessible.
http://<IP_ADDRESS_DSL0>:82
Then, I have to switch to the following link below to access it.
http://<IP_ADDRESS_DSL1>:82
How can I solve this?
Regards,
rootlinux
On Tue, 28 Jun 2005 01:11:18 +0800 ro0ot <ro0ot@phreaker.net> wrote:>Hi,hi, [cut]>$IPTABLES -t nat -A PREROUTING -i eth1 -p tcp --dport 82 -j DNAT --to >10.59.2.2:80 >$IPTABLES -t nat -A PREROUTING -i eth2 -p tcp --dport 82 -j DNAT --to >10.59.2.2:80 > >The problem is sometimes when I access the Server A''s web service using >the following link below, after like few minutes...it cannot be accessible.This looks like bad routing, so I expect you should set up policy based routing. You could use CONNMARK to remember the interface the connection is coming in and then use a separate routing table for each of the marked packets coming the other direction. I assume there are another options if you don''t have CONNMARK, but this looks like the most straigthforward solution.>Regards, >rootlinuxYours sincerely, Peter
Reasonably Related Threads
- control p2p upload bandwidth rate
- [Bridge] Bridging Firewall with Kernel 2.6 failed
- Direct Media and message "SIP/SipAgent-00000bf9 requested media update control 26, passing it to SIP/ead14-00000bfb"
- Remove Abandoned call
- MSN keeps disconnecting with load balancing