On 11/9/10 1:24 AM, Mahesh B Gupta wrote: > > Thanks for the reply, can you please confirm me. after reading the > documentation I have understood that the Shorewall is used as in > routers.
It can also me used on a standalone host. > Also I understand that Shorewall does the switching between two ISPs > and give the packets to the internal LAN. And the routers require two > ethernet cards+1card for the local LAN. but for my situation I have > only two cards in each system. Can you please tell whether my > understanding is wrong. Again, Shorewall can be used on a standalone system with two ethernet cards going to two different networks. > Please find the image below. I need to find the solution for > redundant network handling, where if one ethernet card is removed the > respective device should be able to communicate using the other > interface. The diagram that you show will work right out of the box with no extra software at all. What Shorewall (together with LSM) can add is that it allows there to be a default route through each of the networks. This allows for internet access even when one of the links is down. > I have used bonding method but that is used only if all the systems > are in the same network, so the bonding solution is ruled out. As the > Shorewall is very big one to study and implement, if it doesn't work > as a solution for my project , can you please suggest for some other > solutions. If you want any understanding about the work, I will give > even more clarification please I need this very badly. Please help me > I have very to complete this stuff :( Shorewall will work, provided that all of the hosts run Linux. The configuration is pretty simple; something like: /etc/shorewall/config ... USE_DEFAULT_RT=Yes ... /etc/shorewall/zones fw firewall net ipv4 /etc/shorewall/interfaces net eth0 - optional net eth1 - optional /etc/shorewall/policy all all ACCEPT #No firewall at all /etc/shorewall/providers LAN1 1 - eth0 <gw IP address> balance,track LAN2 2 - eth1 <gw IP address> balance,track The above configuration will roughly balance outgoing internet connections between the two gateways. Now configure LSM and you are done. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ The Next 800 Companies to Lead America's Growth: New Video Whitepaper David G. Thomson, author of the best-selling book "Blueprint to a Billion" shares his insights and actions to help propel your business during the next growth cycle. Listen Now! http://p.sf.net/sfu/SAP-dev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
