similar to: double packet

Sorry for the long descritpion of the problem, I''d like to know If I misunderstand something or if I meet an intrinsic limit of my setup. 217.58.51.162 HDSL eth1 - SRV_XP: 192.168.254.10 eth0: 192.168.254.1 -----+------------------+------- 81.121.243.250 ADSL eth3 - I want to allow incoming pptp request (port 1723) to be forwarded to srv_xp

Hello everybody. I''m running linux 2.6.19 with nth match to alternatively snat outgoing connections to two different ip addresses for load balancing between two adsl lines: Here is: $IPTABLES -t nat -A POSTROUTING -s my_ip --protocol tcp -m multiport --dports 80,443 -m statistic --mode nth --every 2 -j SNAT --to adslA $IPTABLES -t nat -A POSTROUTING -s my_ip --protocol tcp -m multiport

Hi. I have a problem with iptables mark target. I''m using iptables to mark packet in this manner: iptables -t mangle -I OUTPUT --protocol tcp --dport 80 -j MARK --set-mark 1 This linux box has two different ip addresses on two different subnet on the same ethernet NIC: eth0: 1.1.1.254/24 eth0:adslA: 10.10.10.6/29 This is my ip rule sh output: 0: from all lookup local 400: from all

Hi I have a strange problem. I have a firewall with 3 nics. 1 - lan 2 - leased line or diginet 3 - connected to adsl modem I have 2 tables in defined in /etc/iproute2/rt_tables: 200 diginet 201 adsl The ADSL modem has an IP of 192.168.0.1 and is configured to initiate the PPPOE connection. I can mark packets within the network destined for port 80 successfully: ip ro add default via x.x.x.x

hi, I''ve a dedicated internet link 512k with a cisco router, and now, I want to upgrade bandwidth with 8 ADSLs (512k each) then: - build kernel 2.4.27 with pachs: - patch-o-matic-ng-20040621 : CONNMARK, H323, etc... - http://www.ssi.bg/~ja/#multigw Julian''s patch. - Activate "equal cost multi path" (Advanced Router-Networking Options) and so on -

Hi all, i''m puzzled by a ploblem and I don''t know how to debug it... I have a firewall with 2 gateways, adsl and isdn. Main gateway is via adsl, backup via isdn. I setup 2 table ''adsl'' and ''isdn''. You can find a description below. I made a script to test both tables. That mainly 1. adds an iptables -t mangle -A

Hello everybody. I would like to enable QoS on the internal firewall NIC (eth2) to prevent bandwidth saturation from ftp downloads (for example). This is my firewall schema. ___ private network (100bit/s FD) / / /\ | / //\\ |/ || |eth2 \\ |

Hi all, I have the following configuration: _______ +------------+ / diginet link | | | +-------------+ Provider 1 +------- __ | | | / ___/ \_

Hi, This is the first time I write to the list. My english is not so good, but I hope I''ll be understood. I have 4 adsl routers, plugged on a linux box, and this box e used to connect to a local network. The linux box has 5 NICs. eth0: local network inet 10.0.0.56/24 brd 10.0.0.255 scope global eth0 eth1: adsl router 1 inet 192.168.254.1/24 brd 192.168.254.255 scope global

Hi, after migrating to shorewall firewall from my own iptables rule set (to utilise freeswan vpn tunnels) I have successfully configured a 3 interface firewall with net2net vpn tunnels, with the help of the shorewall documentation. However I cannot seem to configure my final step which is to masq another subnet attached to my LAN (LANB, via Cisco 1603 router) to get internet access via the

Hi all, I have a problem with a new Shorewall box I''m trying to migrate from iptables rules to shorewall 2.2.0. I have a 3 interfaces setup: - eth0 ---> internet (ip address) - eth1 ---> remote office (10.0.0.0/8) - eth2 ---> lan (192.168.16.0/24) I''m using a very simple and common setup, with just a few DNAT rules in my /etc/shorewall/rules file, and about twenty

Will this (in theory) work, or have I been around too much magic smoke that has escaped from fried equipment??? I have a system with two different internet connections. One connection is a WISP via an external bridging radio (ethernet to proprietary wireless back haul). The other connection is PPPoE ADSL via the local phone company. (I think) I am wanting to use equal cost multi path

Hello! So i got this problem. I have a debian sarge (with 2.6 kernel) box with shorewall up and network something like this: (net-ip)adsl-router(10.0.0.2)->(10.0.0.5)debian(192.168.0.1)->(192.168.0.x)lan-machines Everything works just great but i cant get port forwarding to work. shorewall show nat shows the traffic (to port 2002) but the machine (192.168.0.3) isnt getting it.. I have

Hi all, I'm currently getting my Centos working as a proxy (squid) on a 2 Mb bandwidth plan that's serving 20 users. it's all good though our need for speed is increasing by the day. soon enough i'll be serving up to 60 user, hence the need to get higher bandwidth though here where the problem is. as i'm using HDSL, 2 Mb is the highest plan available. hence, i need

Hi. Im now decribeing my problem very clearly to see if anyone could help me. I have 3 (three) nics in my system. 1 is for my internet network - (eth1) 2 are for my 2 adsl lines that i use to connect to the internet (eth2 is my "master" adsl line) and (eth0 is my "slave" adsl line). I know that to make redundance work ill have to setup the ip route and ip rule in my

>> No I am using the EN5861, just that we have two ADSL lines and only >> one >> EN5861 and rather than buying another I''d like to use linux to do the >> same job as the en5861, if you know what I mean. > >You can, but since you have two ADSL lines, you''ll need two ADSL devices of some kind, whether it''s a pair of 5861s, or a 5861 and an

Sorry this is the right message. Hi all, in my school I have: - two Netopia router for ADSL (perform NAT), - one linux box with 3 ethernet card I want to make a load balancing on the two ADSL line. I have configured the system as follow: The LAN interface, of the two ADSL router, have address (A) 192.168.0.254 (B) 192.168.2.254 The 3 ethernet card, on the linux box, have address: -eth2

Hi I have a FW dual homed to the Internet via a leased line and most recently by a ADSL line. I have SQUID running on the FW which I want to direct to the ADSL line as well as other traffic from my LAN. After reading the LARTC Howto and the on-line book by Matthew ?? I have my LAN-Internet traffic sorted but the SQUID traffic is a problem. This is my config on a test machine: Chain

Hi, I''m trying to use Shorewall (3.0.6) to accomplish what I thought was going to be fairly simple. Unfortunately, I can''t get the dmz to work correctly, and I''m getting martians logged against the interface at issue. Any help I could get would be greatly appreciated! A picture of my physical setup is attached. I have also attached a shorewall dump. To make a long

Hi all, I have implemented a solution with a machine balancing the network load between two DSL providers as is explained in the LARTC Howto. It is apparently working correctly, but i have some problems. The problem is basically that some packets go out by each ADSL interface with the source address of the other ADSL interface. I think that the routing based on source address isn''t