Displaying 20 results from an estimated 10000 matches similar to: "--set-mark policy routing problem"
2004 Jul 23
1
routing mail on a different gateway
Hi,
I have a linux box with two dsl modems on it (connection is done via
pppoe), I''m trying to route default traffic on the primary connection
(ppp0) and mail traffic on another one (ppp1). This traffic will come
from the localhost.
I run Slackware 9.1 (Kernel 2.4.22), recompiled with necessary options
for using iproute2.
According to the advanced routing howto, I did the following
2005 Nov 28
0
conntrack match failed, packets not FWMarked
Hi all,
I have 2 ISPs on a Linux router and a local network with one Linux server
and many windows.
The local network is masqueraded.
I want to give access to port 25 and 80 of my server from any incoming
request (i.e. from my 2 ISP). I have made a DNAT translation, witch work but
the outgoing answers are not routed correctly. Of course, the de-SNAT
process is done before the routing process. So
2002 Jul 03
0
policy based routing
Hello,
I''m running a home-made Debian 2.4.18 kernel with iproute2-ss010824. I have
2 cable-modems to 2 different providers. One with a transparant proxy and
one with a regular. I would like to load-balance all traffic over the 2
modems and to do this with http traffic I have to run 2 squid processes:
squid1 to act as a proxy for the provider with the transparant proxy and
squid2 that
2003 Oct 31
0
Policy routing with IPTABLES MARK (please help me)
Hello,
I have a LINUX server with two internet connections available.
I want all the traffic to go over the default route, but HTTP traffic
to go over ISP2 line.
Interfaces:
eth1 192.168.2.254 - LAN 192.168.2.x
ppp0 x.x.x.106 - remote gateway x.x.x.6 - ISP1 (default route)
eth0 192.168.164.254 - remote gateway 192.168.164.113 - ISP2 (a
hardware router)
I have the following configuration:
echo
2005 Jun 12
1
problem on setting up per user ID based ADSL connection
Hi,
I have been searching around and trying for a few days but still can''t
get it works. Hopefully the highhand here can give me hints!!
I have 3 adsl connections, 1 is using hardware broadband router to connect and
the other 2 are using my debian linux pc to connect. I hope to setup a
route policy
so that all users except user1 and user2 will use the broadband router
connect (eth0),
2005 Jan 26
0
Controlling Outbound traffic...alternative to dsl_qos_queue
Hi , this probably was asked many times before , but here it goes..
Until now i was using dsl_qos_queue - http://www.sonicspike.net/software/
Which limits outbound traffic and does packet priorites with iptables
using MARKed packets.. works very well , I run a ftpserver + webserver so
it''s usefull to set these 2 with lowest priority and my multiplayer gaming
running on certain UDP ports
2006 Feb 04
1
Routing for multiple interfaces (marking ports)
Hello guys,
I am still in doubt about this kind of server. So my question is about
the "prio" at routing tables like:
I have 3 tables in /etc/iproute2/rt_tables:
201 201
202 202
222 222
In table 201 there is the rules about my internet link (frame relay)
that comes into eth0. So I made this route into it:
[root@ns2 iproute2]# ip route show table 201
default via
2005 Jun 08
2
General Traffic Control Question
Here''s my situation:
I''ve got an Intel machine running a 2.6.9 linux kernel and this box has
4 modems attached to it via a usb to serial port expander. In order to
force data down each of the modems, some pretty simple rules are used
and they are as follows:
iptables -t mangle -A OUTPUT -p tcp --dport $PORT1 -j MARK --set-mark 1
iptables -t mangle -A OUTPUT -p tcp --dport
2005 Nov 25
1
2 WAN links and DNAT
Hi
Here is a short description of my network:
ppp0 (adsl) ppp1 (adsl)
| |
| |
---------------------
| Router |
| Firewall |
| MASQUERAD |
| DNAT |
| |
| eth0 |
---------------------
|
|
|
----------------------
|
2005 Dec 31
2
Routing multiple conntections to the same ISP
Hi,
I have established two connections to the same ISP. After that ip route list
showed this:
195.14.247.94 dev ppp0 proto kernel scope link src 81.173.141.207
195.14.247.94 dev ppp1 proto kernel scope link src 81.173.237.84
192.168.0.0/24 dev eth0 proto kernel scope link src 192.168.0.1
default via 195.14.247.94 dev ppp0
I want 192.168.0.2 to connect to the internet by ppp1 and all
2004 Jun 08
0
Routing - new table
Hello,
I have tested a simple thing in two version of Linux and there was a
problem when I have used fwmark as a selector for rule lookups. As you
can see below on the Slack, the <test> table doesn''t have any label
about fwmark. Is there an iproute problem?
--------------------------------------
# cat /etc/fedora-release
Fedora Core release 2 (Tettnang)
# uname -r
2.6.5-1.358
#
2004 May 21
2
fwmark / MARK / --set-mark syntax never run on my system! Search step by step help.
Hello!
This arguments never run on my system, but I need this:
#!/bin/bash -x
echo "1"
iptables -t mangle -p tcp -d 0/0 --dport 80 -j MARK --set-mark 2
echo "2"
echo "201 T1" >> /etc/iproute2/rt_tables
echo "3"
ip rule add fwmark 2 table T1
echo "4"
ip route add default via 192.168.21.2 dev eth1 table T1
echo "5"
ip route
2006 Aug 18
3
iproute2, alternative tables, no default route: routing trouble for localhost
Hi.
The task:
1. There 3 servers and a router with 2 PPPoE connections (let call them:
ppp0, ppp1).
2. There are several groups of Inet-clients to be served (Servers,
Clients and Club).
3. The task is:
- to route Club through the ppp1;
- to Servers and Clients through ppp0;
(Next is reproduced from memory and may be slightly incorrect)
router # netstat -nr
Kernel IP routing table
2005 Nov 24
1
ip route mpath rr problem
Hi list,
I have tried google but just cant get this to work or figure it out.
My setup
========
vanilla 2.6.13 kernel with
CONFIG_IP_ROUTE_MULTIPATH=y
CONFIG_IP_ROUTE_MULTIPATH_CACHED=y
CONFIG_IP_ROUTE_MULTIPATH_RR=y
CONFIG_IP_ROUTE_MULTIPATH_RANDOM=y
CONFIG_IP_ROUTE_MULTIPATH_WRANDOM=y
CONFIG_IP_ROUTE_MULTIPATH_DRR=y
My configuration:
A host with two ppp links.
Ontop of these two ppp dialup
2004 Mar 22
1
Newbie question - RPDB, policy routing etc...
Hello all,
I am going through the LARTC howto to understand how the iproute2 works.
But some concepts like Policy Routing, RPDB etc are not clear to me. I
am pretty new to iproute, beeing using route command for long...
From what I understand
1. rules (ip rule) tell how to select packets for routing and route (ip
route) tell where to route the selected packets.
2. A collection of rules is
2005 Jul 17
1
routing based on user id
Hi all!
I''ve got 2 (soon 3) internet connection. 1 - via ADSL, 2(and3) via ppp
My network:
http://desima.objectis.net/network-diag
linux1:
user1.user2
eth0=192.168.1.1
ppp0=192.168.5.2( gw 192.168.5.1)
gw=192.168.1.2 ( thru ADSL)
compA=192.168.1.6
compB=192.168.1.15
gw2=192.168.1.217 via ppp to different ISP
All works for compA and CompB,
user1 should use default gw(192.168.1.2)
2007 Jan 21
2
mark and route traffic in a bridge
Hi all !!
I would to like to mark and route some kind of traffic (ie: outbound
www, now by simplicity)
---inet1--------eth0------------| |
| linux |
--eth1------- clientes
---inet2(90.0.0.1)--------eth2-| |
I have eth0 and eth1 bridged (eth2 is not bridged).
I would to route www outbound clients
2007 Jan 21
2
mark and route traffic in a bridge
Hi all !!
I would to like to mark and route some kind of traffic (ie: outbound
www, now by simplicity)
---inet1--------eth0------------| |
| linux |
--eth1------- clientes
---inet2(90.0.0.1)--------eth2-| |
I have eth0 and eth1 bridged (eth2 is not bridged).
I would to route www outbound clients
2004 Oct 15
1
mark & owner for local connections
Hi,
Host A has two interfaces: eth0, tap0.
I want that all locally generated traffic from user 1004 goes through
tap0.
This is what I did:
iptables -A OUTPUT -t mangle -m owner --uid-owner 1004 -j MARK --set-mark 2
echo 202 bigmac.out >> /etc/iproute2/rt_tables
ip rule add fwmark 2 table bigmac.out
ip route add default via 10.0.0.1 dev tap0 table bigmac.out
ip route flush cache
2010 Apr 27
0
Transparent proxy with LVS
I've managed to configure a LVS Cluster to act as a transparent proxy
squid farm, with a virtual server as load balancer, and three real
servers. Because redirecting packets going to port 80 to port 3128 of
squid in the load balancer doesn't works, the solution has a mix of ip
route and iptables.
Here is the script I wrote to configure transparent proxy.
#!/bin/bash
#Transparent proxy