On 9/12/2013 1:12 PM, Thomas Harold wrote: > On 9/12/2013 3:25 PM, İlker Aktuna wrote: >> Hi Thomas, >> >> Thanks for this great detailed information. Unfortunately it is still >> not very clear for me what to write instead of your 999.999.999.999 >> example. My wan interfaces are ppp0 and ppp1 . They have dynamic IP >> addresses and their gateways are same because they connect to the >> same ISP. >> > > Since you are using DHCP on both ppp0 and ppp1, just use "detect" in > /etc/shorewall/providers for the GATEWAY column. Or possibly a "-" > instead since they are PPP. See point #6 at the following URL. > > http://shorewall.net/MultiISP.html#USE_DEFAULT_RT > > Because both of your interfaces talk to the same ISP and have the same > "next-hop" or "default" gateway, you should also read the following > section and probably use "load=" instead of "balance=" in the providers > file. > > http://shorewall.net/MultiISP.html#load > >> Also, I didn't still install lsm yet but checked fpor availability of >> the explained files on my system. There are no "[interface].status" >> files under vARDIR (/var/lib/shorewall) How will they be populated? >> > > LSM creates those /var/lib/shorewall/interfacename.status files. But > only when the interface is "down". So until you setup LSM, you won't > see .status files show in in /var/lib/shorewall. > > With your interfaces being named 'ppp0' and 'ppp1' you would see: > > /var/lib/shorewall/ppp0.status > /var/lib/shorewall/ppp1.status > > To test whether LSM is configured properly and integrating properly with > Shorewall, you can "ifdown ppp0" and see whether LSM creates the > ppp0.status file (with content of "1" inside). > > If the .status files are *not* present, then the > "/etc/shorewall/isusable" script will decide that the interface is up > and running and Shorewall will use it.
Later versions of Shorewall will create those files if the provider interfaces are 'optional'. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ How ServiceNow helps IT people transform IT departments: 1. Consolidate legacy IT systems to a single system of record for IT 2. Standardize and globalize service processes across IT 3. Implement zero-touch automation to replace manual, redundant tasks http://pubads.g.doubleclick.net/gampad/clk?id=51271111&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
