Carlos Vásquez wrote: > Hi, > > I have been using shorewall for a while now. Usually I manage to get > things working on my own, but I am really out of resources right now. > > I want to create a failover between my 2 ISP connections. I have > everything working. But there is one major problem: > > Once the interface is marked as non-usable and shorewall restarts with > only the working provider, the non-usable interface doesn't receives > pings anymore. So when that interface is ready to work again, it never > gets detected by the script, so it remains down. > > If I write a 0 to interface.status in /var/lib/shorewall and restart > shorewall, the interface is "unblocked" and works again (assuming that > is was online at this time). > > I also manage to get the non-usable interface getting pings back if I > add a default route using its gateway and its device. But this disables > the other interface from receiving pings. > > Any lights?
You need a static route defined for the host that you are pinging using your link monitor. That usually happens automatically but if it does not, as appears to be your case, then you need to define it manually as part of the device definition. If the device is a PPP device, then you need to use pppd's scripting capability to add the route when the device comes up. Hope this helps, -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Download Intel® Parallel Studio Eval Try the new software tools for yourself. Speed compiling, find bugs proactively, and fine-tune applications for parallel performance. See why Intel Parallel Studio got high marks during beta. http://p.sf.net/sfu/intel-sw-dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
