On 06/25/2012 02:58 PM, Tom Eastep wrote: > On 06/25/2012 02:34 PM, Jan van der Vyver wrote:
>> Why is this not working? > > It's not working because there is still a default route in the main > routing table and your routing rules are checking the packet marks > *after* the main table is traversed. To close out this thread, I talked to Jan on IRC yesterday and suggested that he add his external interface as a provider with 'balance'. At last report, that was working as expected. The problem being solved here is one of duplicate RFC-1918 subnets with the duplication being beyond Jan's control. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Live Security Virtual Conference Exclusive live event will cover all the ways today's security and threat landscape has changed and how IT managers can respond. Discussions will include endpoint security, mobile security and the latest in malware threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
