Hi, I started on writing a ping daemon for multi ISP setups. It pings routers to monitor if isp is available or not. When status of an ISP change it executes a configurable command. Now, to do a proper failover it might be needed to delete/add default gateways. This might confuse shorewall with the multiisp setup. So, what would be *really* neat is a shorewall command to indicate the status of an isp. For example shorewall provider ISP1 down will tell shorewall that ISP1 (defined in providers) is down and remove that route. On restart it should not be confused if route is not there. and the corresponding: shorewall provider ISP1 up will tell shorewall that the ISP is available again and do the necessary magic. Prefferible without recompiling the rules. What would be needed to get something like that working in shorewall? Other ideas on how to implement proper ISP failover with shorewall? -nc ------------------------------------------------------------------------------
Natanael Copa wrote:> > Other ideas on how to implement proper ISP failover with shorewall? >Make all of your providers ''optional'' -- then all you need to do is ''shorewall restart''. In fact, you can use ''shorewall -f restart'' if you are running a recent enough version of Shorewall; that skips the compilation phase. -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------
Tom Eastep wrote:> Natanael Copa wrote: > >> Other ideas on how to implement proper ISP failover with shorewall? >> > > Make all of your providers ''optional'' -- then all you need to do is > ''shorewall restart''.Also take note of the ''isusable'' extension script -- that script can be used to extend Shorewall''s method of determining if an interface is up or down. -Tom -- Tom Eastep \ The ultimate result of shielding men from the Shoreline, \ effects of folly is to fill the world with fools. Washington, USA \ -Herbert Spencer http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------