search for: dmz_if

...his is the iproute script: ISP1_NET="x.x.x.192/29" ISP1_IP="x.x.x.195" ISP1_GW="x.x.x.193" ISP1_IF="bad0" ISP2_NET="x.x.x.96/29" ISP2_IP="x.x.x.98" ISP2_GW="x.x.x.97" ISP2_IF="bad1" DMZ_NET="192.168.0.0/24" DMZ_IF="dmz0" LAN_NET="10.0.0.0/24" LAN_IF="lan0" SERVER_MAIL="10.0.0.50" SERVER_1="10.0.0.10" SERVER_2="10.0.0.2" SERVER_3="10.0.0.3" /sbin/ip rule add fwmark 100 table ISP2 /sbin/ip rule add fwmark 101 table ISP1 /sbin/ip route a...

I try use setup traffic shaping with Shorewall-4.0.2 and have fault. When i start Shorewall with tc-files configured i get follow messages: ... RTNETLINK answers: No such file or directory We have an error talking to the kernel ERROR: Command "tc filter add dev eth2 parent ffff: protocol ip prio 50 u32 match ip src 0.0.0.0/0 police rate 500kbit burst 10k drop flowid :1" Failed

...this single entry in /etc/shorewall/routes to route all HTTP requests from the internal network to 206.124.146.177 in the DMZ: #SOURCE DEST PROTO PORT(S) SOURCE INTERFACE GATEWAY # PORT(S) $INT_IF 0.0.0.0/0 tcp 80 - $DMZ_IF 206.124.146.177 Happy routing, -Tom -- Tom Eastep \ Nothing is foolproof to a sufficiently talented fool Shoreline, \ http://shorewall.net Washington USA \ teastep@shorewall.net PGP Public Key \ https://lists.shorewall.net/teastep.pgp.ke

Hi all! After that good thread "DGD patch not detecting dead gateway" I was able to set up a Load Balancing with ping based DGD (without Julian Anastasov patch). But now I''m facing a new problem and tried some options, with only partial solutions. I made a script based on http://www.mail-archive.com/lartc@mailman.ds9a.nl/msg16257.html (Thank you Manish Kathuria),

...but may be somebody from list can help me or explain this situation. I have follow interfaces in 'tcdevices' files: #INTERFACE IN-BANDWITH OUT-BANDWIDTH # $EXT_IF 500kbit 248kbit $INT1_IF 500mbit 500mbit $INT2_IF 500mbit 500mbit $DMZ_IF 500mbit 500mbit follow rules in 'tcrules' file for tested interface (INT1_IF): 31:F $EXT_IF $INT1_IF:$ADM_IP all 32:F $EXT_IF $INT1_IF:$PRV_IP all 33:F $EXT_IF $INT1_IF:$MY_NET all and follow traffic classes...

Hi! I have reprise try to resolve this problem, suspended from 17 dec 2005 I have try to apply the suggest of Jerry (see above). The problem still exist. See attach shorewall config, dump and tcpdump when I check to exit whit SSH from firewall... In the masq file is reported the last my attempt in order to resolve my problem, however I have test also the example reported in MultiISP.html, but