similar to: 1 to 1 nat of multiply pptp tunnels

My Internet gateway is using ADSL PPPoE connection with dynamic public IP assigned by ISP. My Internet gateway is Redhat AS3 U2, shorewall 2.0.9 As my ISP provided 4 simultaneous pppoe dailup connection for the same physical adsl line. My linux server can be configured for multiple pppoe connection i.e. ppp0, ppp1, ppp2, ppp3 Is it possible of shorewall to assigned say ppp0''s IP is

Hi all, I read the setup at http://www.blackh0le.net/articles/vpn-dun-howto.html to setup my VPN. However, I'm having a problem which I think is proxy-ARP not working. I like to ask you to see if you know what's going on. When I ping 10.77.1.1 from windows XP machine the packets get to the 10.77.1.1 machine, but they don't have a return path to get back. When I do ping the windows

Hi Ppl I have 5 adsl lines that after reading quite a bit i managed to get load balanced now abvoiusly it doesnt load balance evenly and this works on what routes are still in the routing cache. my question is my outbound masquerading had to be modified to use snat in iptables instead of just plain masquerading my outbound masquerading now works but my inbound port forwarding doesnt work would

yes, this is a crazy subject. I have 4 ADSL lines to the same provider, which even have the same gateway. Those lines are connected to the same machine (more crazyness: even connected to the same nic. it works fine, I swear). this machine will serve this conenction to a local net. so, I setup the ifaces correctly, everything works. I add balancing using this command: # ip route replace default

Here''s my situation: I''ve got an Intel machine running a 2.6.9 linux kernel and this box has 4 modems attached to it via a usb to serial port expander. In order to force data down each of the modems, some pretty simple rules are used and they are as follows: iptables -t mangle -A OUTPUT -p tcp --dport $PORT1 -j MARK --set-mark 1 iptables -t mangle -A OUTPUT -p tcp --dport

That could have gone smoother. I had many problems with the NFS install on my firewall then once I got the server back up, mail delivery was broken :- ( I still haven''t gotten ulogd to run under RH9.0 but everything else seems to be working ok... -Tom -- Tom Eastep \ Shorewall - iptables made easy Shoreline, \ http://www.shorewall.net Washington USA \ teastep@shorewall.net

Hello, I''m trying to setup an 8 port wan configuration (pptp+pppoe) with one vlan trunk. My internal networks are : LAN(eth9): 10.0.0.0/16 VLAN10(eth9) 10.10.0.0/24 VLAN20(eth9) 10.20.0.0/24 VLAN30(eth9) 10.30.0.0/24 VLAN100(eth9) 10.100.0.0/24 I would like to post my configuration here since i don''t success to do the following: 1. Communicate between VLANxx to LAN

I have a private lan that is connected to the world via 3 dsl lines. I put up a linux box that handles all the dsl lines, lan gateway and all is working well...until...one of the dsl lines goes down. My routing table is: x.x.x.x dev ppp0 proto kernel scope link src x.x.x.x x.x.x.x dev ppp1 proto kernel scope link src x.x.x.x x.x.x.x dev ppp2 proto kernel scope link src x.x.x.x

Hello, I''m receiving this error while restarting/starting Shorewall : Processing /etc/shorewall/init ... WARNING: default route ignored on interface vlan20 WARNING: default route ignored on interface vlan10 WARNING: default route ignored on interface vlan30 WARNING: default route ignored on interface vlan50 WARNING: default route ignored on interface vlan100 My route -n

Hi all iam trying to deploy loadbalance and failover My setup description --Fedora Core 4 --Linux 2.6.12.3 #1 SMP Mon Jul 25 22:37:34 IST 2005 i686 i686 i386 GNU/Linux --tc utility, iproute2-ss050314 --ip utility, iproute2-ss050314 --iptables v1.3.0 And i had deployed Following configuration #table main with priority 50, the highest one ip rule add prio 50 table main #table 201 ip rule add

Hí everybody, you have a nice day. I am configuring accounting in shorewall /etc/shorewall/accounting and the traffic between eth0 (local network)1, eth2(local network2) and eth3(local network3) <--> eth1(ip public network), works fine. I make the accounting because y want to control the remote vpn access(pptpd) throught shorewall. Which is the way to control vpn /ip/access in

Hi, I want to be able to specify actions for different classes of traffic in any of these four ways, and I''d like to use only HTB if possible: 1. No guranteed rate, No ceil 2. Guaranteed rate, No ceil 3. No guranteed rate, Ceil specified 4. Guaranteed rate, Ceil specified For types 2, 3 and 4 there can be several classes of each, with different rates and ceilings. 4 is ofcourse easy.

Hi, I have a PPPoE server running on a linux box that accepts multiple PPPoE sessions from clients. I'd like to bridge each of the sessions together so that it looks like just one interface. Below is a diagram: br0 | ------------------------------- | | | | ppp0 ppp1 eth3 ppp3 I've read that anything can be bridge as long as MTU is the same.

please, help, i have build vpn server (suse 9 + poptop), i have managed to implement tc htb in ip-up script, but every client has own ppp interface (ppp0, ppp1, ppp2...), and my idea is to share available bandwidth, not to limit connection, how to build root tc rule, when I have more then one interface?... please any one width experiance regards _______________________________________________

Hi Paul, thanks for your answers. > 3 DSL (ppp0,ppp1,ppp2) providers from the same ISP. (which means they have > the same gateway, but different static ISP''s) Do they actually have the same peer address? The connection is pppoe, the gateway is assigned by the ISP and the 3 ADSL connections next hop is to the same Router at the ISP. The gateway is the same for all 3 connections

Albi Rebmann wrote: > Hallo, > > sorry to say again, but BindToInterface = interface [experimental] still > does not work here (tinc 1.08). I use SuSE Linux 8.0, 2.4 Kernel. > If I add a missing device I get an error, but I add ppp2 (my external > device) and tinc still listens on 0.0.0.0 > I hope you have an idea how I can bind tinc to only one ip address. Use

Hello, I''m having some trouble with the u32 port match and that is when specifying a mask. tc filter add prio 1 dev ppp1 parent 2:0 protocol ip u32 match ip dst 0.0.0.0/0 match ip protocol 17 0xff match ip dport 27015 0xffff flowid 2:4 Using 27015 0xffff works just fine, all packets to dport 27015 go to 2:4 tc filter add prio 1 dev ppp2 parent 2:0 protocol ip u32 match ip dst

Dear R helpers   I have some variables say ABC, DEF, PQR, LMN and XYZ. I am choosing any three varaibles at random at a time for my analysis and name these files as input1.csv, input2.csv and input3.csv. So if I choose variables say ABC, DEF and PQR, I am passing the specifications of these variables to input1.csv, input2.csv and input3.csv respectively.   This means in another case even if I

Hi, I have a very simple server setup, using shorewall as my firewall. I have a line like this at the top of my rules file to allow ssh connections, but limited to 3 connection per minute with a burst rate of 3: SSH/ACCEPT net $FW - - - - 3/min:3 - Now when I have that in place, and from a remote machine run scp server:/some/file ., I find

Hello, [I hope i''m on the lartc mailing list - i''m posting using gmane] I used the "Linux Advanced Routing & Traffic Control HOWTO" for doing source routing using iproute2. The documentation would be perfect if the source routing page <url:http://lartc.org/howto/lartc.rpdb.html> mentionned you may have to turn off spoofing protection on ppp2: