Displaying 20 results from an estimated 1000 matches similar to: "iptables marking problems and ip route not working"
2002 Jul 26
2
RTNETLINK answers: Invalid argument, fwmark
I''m using htb classes on my firewall to queue traffic and implement
different restrictions on different protocols.
tc qdisc del dev eth0 root
tc qdisc add dev eth0 root handle 1: htb default 190
tc class add dev eth0 parent 1: classid 1:3 htb rate 2mbit burst 30k
tc class add dev eth0 parent 1:1 classid 1:90 htb rate 50kbit ceil 384kbit
burst 5k
tc qdisc add dev eth0 parent 1:90 handle
2006 Oct 19
1
Re: Tc rules Helpwith multiISP+ squid& squidguard...
I found that in my kernel config :
# CONFIG_NET_KEY is not set
CONFIG_INET=y
CONFIG_IP_MULTICAST=y
CONFIG_IP_ADVANCED_ROUTER=y
CONFIG_IP_MULTIPLE_TABLES=y
CONFIG_IP_ROUTE_FWMARK=y
CONFIG_IP_ROUTE_MULTIPATH=y
CONFIG_IP_ROUTE_VERBOSE=y
# CONFIG_IP_PNP is not set
# CONFIG_NET_IPIP is not set
# CONFIG_NET_IPGRE is not set
But no CONFIG_IP_ROUTE_MULTIPATH_CACHED.
-----Message
2002 Apr 22
2
RE: RTNETLINK answers: Invalid argument
Hi All,
concerning the problem when running the "ip ru ls" command.
I faced with the same problem, and I solved it by making sure to include the following settings into the kernel configuration (2.4.18):
CONFIG_IP_ADVANCED_ROUTER=y <===
CONFIG_IP_MULTIPLE_TABLES=y <===
CONFIG_IP_ROUTE_FWMARK=y
CONFIG_IP_ROUTE_NAT=y
CONFIG_IP_ROUTE_MULTIPATH=y
CONFIG_IP_ROUTE_TOS=y
2003 Apr 24
3
compiling iproute
Hi there. My name is Lucas and I''m from Argentina. Firstly,
forgive me for my english since it is not my native languaje.
Now, I''ve been reading on how to compile iproute2 and found that I
need to add the following to my kernel, which in my case it is 2.4.20,
and it is also the one which this document I read talked about:
CONFIG_NETLINK=y
CONFIG_RTNETLINK=y
# CONFIG_NETLINK_DEV
2006 Dec 29
1
Trouble selecting network interface by port
I have a connection to the Internet (on eth1), and over this I also
have a PPTP tunnel set up (on ppp0). Temporarily I use the (slower)
PPTP tunnel for everything, but I really just have to use it for some
specific purposes, which are distinguishable by port.
So, I want to direct only some specific ports to ppp0, using eth1 for
the rest.
I have tried following the instructions on
2006 Mar 03
0
Multicast only working in promiscuous mode
Hi,
I am trying to set up a uPnP server on a Linux box (Debian Sarge Stable kernel 2.6.8). uPnP
works using multicast packages for locating servers.
This does however seem to fail unless I set the relevant NIC in promiscuous mode. If I do so,
it works well.
I have added
ip route add 224.0.0.0/4 dev eth0
and
echo 1 >/proc/sys/net/ipv4/ip_forward
and the kernel is set up to enable
2005 Dec 06
0
GRE Tunnels
Hi ,
I am trying to set up a GRE tunnel between two linux routers. The routers
have a 400 MHz Processor.
Linux .2 65.0.0.2 Linux
LAN1 -------- Router -------- INTERNET ---- Router ---- LAN2
10.10.10.0 .1 208.1.0.1 (Simulated) .1 .1
192.168.2.0/24
/24
Scripts to Create the tunnel
ip tunnel add tun0 mode gre remote 65.0.0.1 local
2002 Dec 09
0
neughbour table overflow
hi all,
am getting neighbour table overflow messages very often...
Dec 9 09:59:54 ICG kernel: NET: 13 messages suppressed.
Dec 9 09:59:54 ICG kernel: Neighbour table overflow.
Dec 9 09:59:59 ICG kernel: NET: 12 messages suppressed.
Dec 9 09:59:59 ICG kernel: Neighbour table overflow.
how can i stop/reduce it ??
what factors does it depends on ??
kernel configuration are...
2006 Oct 20
0
Re: Tcrules Helpwith multiISP+ squid& squidguard...
Yessssssssssssssssssss !! THANKSS it Works !!!!
Thanks a lot, if you come to Lille,France I''ll Offer you a big Beer)
Joffrey
-----Message d''origine-----
De : shorewall-users-bounces@lists.sourceforge.net [mailto:shorewall-users-bounces@lists.sourceforge.net] De la part de Tom Eastep
Envoyé : jeudi 19 octobre 2006 21:46
À : Shorewall Users
Objet : Re: [Shorewall-users] Tcrules
2002 Aug 15
0
conditional routing based on tos/fwmark not working with ipsec
Hello all,
I am working with kernel 2.2.20 with the necessary options configured into
the kernel to support all of the wonderfully fancy routing features:
- routing based on ToS
- routing based on fwmark
- multiple routing tables
This same kernel is in use elsewhere, and is routing based on fwmark with
success. This leads me to believe that my kernel is OK and that I have
another
2004 Mar 10
0
tc/wondershaper and RTNETLINK answers: Invalid argument
Hi,
I''ve been trying out the wondershaper script, but on several of the
examples I keep getting the error message:-
RTNETLINK answers: Invalid argument
On the following line:-
tc filter add dev eth0 parent ffff: protocol ip prio 50 u32 match ip src
\
0.0.0.0/0 police rate 512kbit burst 10k drop flowid :1
Based on other posts to this mail list, I gather it is an issue with
kernel
2001 Dec 05
0
Problem setting up nexthop
Dear Alexey,
Sorry to bother you with this small question about nexthop syntax failing,
but I haven''t found anyone else who can answer it - including Matthew Marsh
or those on the lartc mailing list. The problem, with 2.2.19 and 2.2.20
kernels and versions of iproute2 up to iproute2-2.2.4-now-ss001007 (the most
recent that compiles for me), is that this command does not work:
# ip ro
2003 Jan 13
1
Getting Error when starting Wondershaper 1.1a
Hello,
i´ve installed a Suse 8.1 minimal System with iproute 2.4.7 and iptables, Suse default Kernel 2.4.19.
When I start the Wondershaper 1.1a Script I get the following Error:
CBQ: "allot" is required to set WRR parameters.
/home/skripte/./wshaper: line 72: allot: command not found
CBQ: "allot" is required to set WRR parameters.
/home/skripte/./wshaper: line 78: allot:
2004 Oct 28
7
akamai problem behind linux router
Hello,
This is not really a shorewall problem. But just wanted to check if this
problem rang a bell with any of you.
I have a linux router with slackware 9.1, and kernel 2.4.27
Everyting works ok except for access to web sites that use akamai from
behind the router.
>From the router machine itself I can access those sites without problems.
But machines behind nat, take forever to access
2004 Jan 19
1
Problem implementing split access
Hello,
I am attempting to implement load balancing on a firewall to allow me to use
two ISPs. I have followed the instructions in section 4.2 of the LARTC HOWTO
but have got stuck on the split access section
I have the options CONFIG_IP_ADVANCED_ROUTER and CONFIG_IP_MULTIPLE_TABLES
in my kernel (2.4.24) and have added routes to the /etc/iproute2/rt_tables
file but when I try a command in the
2005 Sep 25
8
...requires that your kernel and iptables have ROUTE target support
good day to you
i have compiled evertything related to ip tables as modules, but still i get
this error when trying to use /etc/shorewall/routes
can someone tell me the spicific module i need to have?
here are my info
intranet linux # shorewall version
2.4.2
intranet linux # uname -a
Linux intranet 2.6.12-gentoo-r10 #10 SMP Sun Sep 11 15:01:49 SAST 2005 i686
AMD Athlon(tm) XP 2400+
2007 Apr 12
0
two NICs on the same subnet
What are the reasons that two NICs on the same
computer are set to the same subnet?
i.e. eth0 IP addresses is x.y.z.m and eth1 is x.y.z.n.
Any websites describing these in details?
http://lartc.org/lartc.html#LARTC.RPDB.MULTIPLE-LINKS
"4.2. Routing for multiple uplinks/providers"
have two cases (Split access and Load balancing) for
two or more internet connections on the same computer
2005 Feb 05
3
Help - Getting an error when trying to add prio to tables....
Hi,
I am getting the errors given below, when I am trying to add the prio to any
table. What can be the problem and how can i resolve it.... Kindly help
[root /root]# ip rule
RTNETLINK answers: Invalid argument
Dump terminated
[root /root]# ip rule list
RTNETLINK answers: Invalid argument
Dump terminated
[root /root]# ip rule list table main
"ip rule show" need not eny arguments.
2006 Apr 27
0
MULTIPATH: how to control chache expiration time?
I have a 2.6.12(ubuntu-patchset), kernel recompiled with this routing options:
[*] IP: advanced router
[*] IP: policy routing
[*] IP: equal cost multipath
Load balancing is working great, but i have problems whits long term tcp flows
(like msn-messenger or vpns or any other type of long term ip based
conection).
I assume this is because after a period of time, the per-host
2004 Jul 26
5
IP ROUTE
Hello, my linux show me that:
server2 root # ip route add default scope global nexthop via 192.168.5.1 dev eth2 weight 1 nexthop via 192.168.160.1 dev eth0 weight 1
RTNETLINK answers: Invalid argument
What can I do????
Thanks
Matias
---
Outgoing mail is certified Virus Free.
Checked by AVG anti-virus system (http://www.grisoft.com).
Version: 6.0.726 / Virus Database: 481 - Release Date: