Hi I using Shorewall 3.4.8 (quite old I know) and I set up a multi-ISP configuration, and it works nice, I can route part of the traffic (to our production site) through one ISP and the rest of the traffic through the other ISP. I'm doing this using route_rules, something like this:
eth0 1.1.1.1/24 ISP2 1002 lo 1.1.1.1/24 ISP2 1003 eth0 - ISP1 1005 lo - ISP1 1006 and this is how my providers looks like ISP1 1 1 main eth1 172.10.1.1 track,balance eth0 ISP2 2 2 main eth2 10.0.0.1 track,balance eth0 so assuming the IP are real :), if I try to connect to an IP of 1.1.1.1/24 I pass through ISP2, and if I try to connect to whatever public Internet IP it uses ISP1. Fine. Now, the problem is that, even if I open the icmp 8 for both providers (so, both ethX, I have one NIC for ISP, configured in interfaces), I can ping my external ISP1 IP only from the Internet and not from my production site, and viceversa, I can ping my ISP2 public IP only from my production site and not the Internet. I'm absolutely sure that's a routing problem, but I can't figure out how to solve this. Any help? -- Davide Ferrari Atrapalo.com System Administrator ------------------------------------------------------------------------- This SF.Net email is sponsored by the Moblin Your Move Developer's challenge Build the coolest Linux based applications with Moblin SDK & win great prizes Grand prize is a trip for two to an Open Source event anywhere in the world http://moblin-contest.org/redirect.php?banner_id=100&url=/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
