Hi All,
We have been using Shoreline Firewall for many years now for our firm.
The older version of shorewall does not support multiple ISP providers at the
same time. For that reason, I am trying to configure Shorewall version 4.4.22
in our environment.
We have two providers: A and B. I have three interfaces on my test machine:
eth0: that is for LAN, eth1: for provider A and eth2: for provider B.
I have given seperate names to both the providers: inet1 to provider A and
inet2 to provider B. And lnet is my local LAN.
Provider A is somewhat untrustable. Sometimes, the connection gets lost. We
have some RDP users who work on remote client side. They face connection
problems.
What I want to do is, route all the traffic of those RDP users via provider B
and normal LAN users should use provider A for all there work.
In short, I want some users to route through provider B and rest of others
through provider A.
Now I have read the shorewall docs i.e. MultiISP configuration:
http://shorewall.net/MultiISP.html.
I have created a single rules file for that purpose. I have written
appropriate rules for the above purpose.
But when I test both the providers at same time, problem starts.
Initially, provider B works, i.e. RDP users can connect to remote using
provider B. and local users are unable to browse the internet. When I restart
eth1 interface, then provider A works. But now RDP users are unable to connect.
Are the interfaces overriding each other? Or am I missing something?
I have RDP rule in the rules file as follows:
ACCEPT lnet:192.168.5.4 inet2:xx.xx.xx.xx tcp 9690
Thanks.
------------------------------------------------------------------------------
Cloud Services Checklist: Pricing and Packaging Optimization
This white paper is intended to serve as a reference, checklist and point of
discussion for anyone considering optimizing the pricing and packaging model
of a cloud services business. Read Now!
http://www.accelacomm.com/jaw/sfnl/114/51491232/
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
