Hi Tom, thanks for the detailed explanation.. Im working to make the things work.. Now I have got another project it is also same stuff but in the new one.. we have a bit different stuff.
We have two ethernet cards, where the data should be sent to two ethernet cards all the time to provide 200% data. if one is dropped other shall be used with 100%data rate. I understood from your explanation that.. we can route all the data to both the interfaces with the configuration file " /etc/shorewall/providers". But while receiving the data Im sure I will get the duplicate packets, so can you please tell me whether your shorewall can be used in this situation to discards the duplicate packets while receiving. So I can use your stuff in both the projects... Thanks and Regards Thanks and Regards Mahesh Gupta.B L&T EmSyS Proprietary L&T EmSyS Confidential L&T EmSyS Internal Use L&T EmSyS General Business Tom Eastep <[email protected]> 11/09/2010 11:19 PM Please respond to Shorewall Users <[email protected]> To [email protected] cc Subject Re: [Shorewall-users] Can I use shorewell stuff for my problem On 11/9/10 1:24 AM, Mahesh B Gupta wrote: > > Thanks for the reply, can you please confirm me. after reading the > documentation I have understood that the Shorewall is used as in > routers. It can also me used on a standalone host. > Also I understand that Shorewall does the switching between two ISPs > and give the packets to the internal LAN. And the routers require two > ethernet cards+1card for the local LAN. but for my situation I have > only two cards in each system. Can you please tell whether my > understanding is wrong. Again, Shorewall can be used on a standalone system with two ethernet cards going to two different networks. > Please find the image below. I need to find the solution for > redundant network handling, where if one ethernet card is removed the > respective device should be able to communicate using the other > interface. The diagram that you show will work right out of the box with no extra software at all. What Shorewall (together with LSM) can add is that it allows there to be a default route through each of the networks. This allows for internet access even when one of the links is down. > I have used bonding method but that is used only if all the systems > are in the same network, so the bonding solution is ruled out. As the > Shorewall is very big one to study and implement, if it doesn't work > as a solution for my project , can you please suggest for some other > solutions. If you want any understanding about the work, I will give > even more clarification please I need this very badly. Please help me > I have very to complete this stuff :( Shorewall will work, provided that all of the hosts run Linux. The configuration is pretty simple; something like: /etc/shorewall/config ... USE_DEFAULT_RT=Yes ... /etc/shorewall/zones fw firewall net ipv4 /etc/shorewall/interfaces net eth0 - optional net eth1 - optional /etc/shorewall/policy all all ACCEPT #No firewall at all /etc/shorewall/providers LAN1 1 - eth0 <gw IP address> balance,track LAN2 2 - eth1 <gw IP address> balance,track The above configuration will roughly balance outgoing internet connections between the two gateways. Now configure LSM and you are done. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ The Next 800 Companies to Lead America's Growth: New Video Whitepaper David G. Thomson, author of the best-selling book "Blueprint to a Billion" shares his insights and actions to help propel your business during the next growth cycle. Listen Now! http://p.sf.net/sfu/SAP-dev2dev _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
signature.asc
Description: Binary data
------------------------------------------------------------------------------ The Next 800 Companies to Lead America's Growth: New Video Whitepaper David G. Thomson, author of the best-selling book "Blueprint to a Billion" shares his insights and actions to help propel your business during the next growth cycle. Listen Now! http://p.sf.net/sfu/SAP-dev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
