[prev in list] [next in list] [prev in thread] [next in thread] 

List:       lartc
Subject:    [LARTC] fwmark + iproute2 + IP MASQ
From:       Mike OConnor lartc () pineview ! net
Date:       2000-11-18 4:34:19
[Download RAW message or body]

<PRE>Hi all

I\'m trying to get a system going which has two links to the internet. One has 
class C range routed over it and the other will need to be Masq\'d.
I want to route traffic like smtp, http, https &amp; ftp via the low cost link (the 
Masq\'s one)

I\'ve setup Advanced routing based on using 2.2.17 and ipchains &amp; iproute2
(the lastest as part of debian 2.2r1) using Linux 2.4 Advanced Routing HOWTO
as an example. (there is not a 2.2 how-to for this even thought it is supposed 
to be able to do this type of thing) A few of the command did not have a 
ipchains equivalent, particularly \'mangle\'.

Using tcpdump I can see the packet come in from my notebook 203.33.246.2 which 
hits 203.33.246.1 and is MASQ\'d to the Ipaddress of the isdn link. The 
requested information is returned to the ISDN interface but nothing is seen on 
the eth1 link going back to notebook.

I also watched the normal ppp link and there was no traffic on this link in 
relation to the www connection.

The following is a list of the commands I used:

/sbin/ipchains -A forward -j MASQ -s 203.33.246.0/24 -i ippp+
/sbin/ipchains -A input -i eth1 -p tcp --dport 80 -m 1

<A HREF="mailto:root@ppro">root@ppro</A>:~# ip rule ls
0:      from all lookup local
32765:  from all fwmark        1 lookup lowcost.out
32766:  from all lookup main
32767:  from all lookup default
<A HREF="mailto:root@ppro">root@ppro</A>:~#

ip route add default dev ippp0 table lowcost.out

Any help would be great :)

Cheers &amp; Thanks
    Mike OConnor




</PRE>

[prev in list] [next in list] [prev in thread] [next in thread]