Re: [Shorewall-users] Multi-provider help

Wed, 12 Jan 2011 09:57:07 -0800 

Le 11/01/2011 15:38, Tom Eastep a écrit :
> On 1/11/11 2:26 AM, Sam Przyswa wrote:
>> Le 10/01/2011 20:08, Tom Eastep a écrit :
>>> There are explicit instructions at
>>> http://www.shorewall.net/MultiISP.html#Applications
>> I configure as it explained on this page with a line in
>> /etc/shorewall/tcrules:
>>
>> 1     $FW      0.0.0.0/0     tcp   25
>>
>> to force the smtp traffic on provider 1 but with the "balance" option in
>> /etc/shorewall/providers some smtp traffic go on provider 2 !?
> http://www.shorewall.net/MultiISP.html#Local

Ok I know this page but if I set HIGH_ROUTE_MARKS=Yes I got an error:

Checking /etc/shorewall/providers...
    ERROR: Invalid Mark Value (1) : /etc/shorewall/providers (line 10)

The providers file:

#
# Shorewall version 4 - Providers File
#
# For information about entries in this file, type "man shorewall-providers"
#
# For additional information, see http://shorewall.net/MultiISP.html
#
############################################################################################
#NAME   NUMBER  MARK    DUPLICATE       INTERFACE       GATEWAY         
OPTIONS         COPY
Orange  1       1       main    eth1    81.255.74.150    track,balance=1 
eth0
Free       2       2       main    eth2    88.180.116.254  
track,balance=3 eth0
#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE

If I set route_rules as this page said:

#
# Shorewall version 4 - route_rules File
#
# For information about entries in this file, type "man 
shorewall-route_rules"
#
# For additional information, see http://www.shorewall.net/MultiISP.html
##############################################################################
#SOURCE                 DEST                    PROVIDER        PRIORITY
lo                              -                           Orange       
      1000

ALL traffic go on provider 1 and the tcrules file setting is no more active.

My tcrules file is:

2:P     192.168.2.0/24          0.0.0.0/0       tcp     143
2:P     81.255.74.148           0.0.0.0/0       tcp     143
2:P     88.180.116.54           0.0.0.0/0       tcp     143
1:P     192.168.2.0/24          0.0.0.0/0       tcp     25
1:P     81.255.74.148           0.0.0.0/0       tcp     25
1:P     88.180.116.54           0.0.0.0/0       tcp     25
1       $FW                     0.0.0.0/0       tcp     25
2:P     192.168.2.0/24          0.0.0.0/0       tcp     80,443
2:P     172.16.0.0/24           0.0.0.0/0       tcp     80,443
2:P     172.16.1.0/24           0.0.0.0/0       tcp     80,443
2:P     81.255.74.148           0.0.0.0/0       tcp     80,443
#2:P    88.180.116.54           0.0.0.0/0       tcp     80,443
SAME:P  0.0.0.0/0               0.0.0.0/0       tcp     143
SAME:P  192.168.2.0/24          0.0.0.0/0       tcp     80,443
SAME:P  172.16.0.0/24           0.0.0.0/0       tcp     80,443
SAME:P  172.16.1.0/24           0.0.0.0/0       tcp     80,443
SAME:P  81.255.74.148           0.0.0.0/0       tcp     80,443
SAME:P  88.180.116.54           0.0.0.0/0       tcp     80,443


So please let me know how to set ALL traffic on port 25 on provider 1 
and ALL traffic on port 143 on provider 2 at this time with my providers 
file I only have balanced traffic with 3/1 ratio.

Thanks for your help.

Sam.



------------------------------------------------------------------------------
Protect Your Site and Customers from Malware Attacks
Learn about various malware tactics and how to avoid them. Understand 
malware threats, the impact they can have on your business, and how you 
can protect your company and customers by using code signing.
http://p.sf.net/sfu/oracle-sfdevnl
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to