On 9/14/2013 10:26 AM, HL wrote: > I Removed the .... DEFAULT GATEWAY and placed a '-' > After all zebra should do that, right! > > And I thing ... Bingo ! > ip r > default via 10.0.173.254 dev eth0 proto zebra > 4.5.4.5 via 192.168.21.254 dev vlan122 proto zebra > 10.0.173.0/24 dev eth0 proto kernel scope link src 10.0.173.193 > 45.45.45.45 via 192.168.21.254 dev vlan122 proto zebra > 99.99.99.99 via 192.168.21.254 dev vlan122 proto zebra > 192.168.21.0/24 dev vlan122 proto kernel scope link src 192.168.21.1 > alpdev-2_5_4:/etc/shorewall# vtysh > > Hello, this is Quagga (version 0.99.22.4). > Copyright 1996-2005 Kunihiro Ishiguro, et al. > > alpdev-2_5_4# conf t > alpdev-2_5_4(config)# ip route 5.5.5.5/32 192.168.21.254 > alpdev-2_5_4(config)# ^Z > alpdev-2_5_4# show ip route > Codes: K - kernel route, C - connected, S - static, R - RIP, > O - OSPF, I - IS-IS, B - BGP, A - Babel, > > - selected route, * - FIB route > > S>* 0.0.0.0/0 [1/0] via 10.0.173.254, eth0 > S>* 4.5.4.5/32 [1/0] via 192.168.21.254, vlan122 > S>* 5.5.5.5/32 [1/0] via 192.168.21.254, vlan122 > C>* 10.0.173.0/24 is directly connected, eth0 > S>* 45.45.45.45/32 [122/0] via 192.168.21.254, vlan122 > S>* 99.99.99.99/32 [1/0] via 192.168.21.254, vlan122 > C>* 127.0.0.0/8 is directly connected, lo > C>* 192.168.21.0/24 is directly connected, vlan122 > > alpdev-2_5_4:/etc/shorewall# ip r > default via 10.0.173.254 dev eth0 proto zebra > 4.5.4.5 via 192.168.21.254 dev vlan122 proto zebra > 5.5.5.5 via 192.168.21.254 dev vlan122 proto zebra > 10.0.173.0/24 dev eth0 proto kernel scope link src 10.0.173.193 > 45.45.45.45 via 192.168.21.254 dev vlan122 proto zebra > 99.99.99.99 via 192.168.21.254 dev vlan122 proto zebra > 192.168.21.0/24 dev vlan122 proto kernel scope link src 192.168.21.1 > > #NAME NUMBER MARK DUPLICATE INTERFACE GATEWAY OPTIONS > COPY > isp1 1 0x100 - eth0 - track,loose > isp2 2 0x200 - vlan122 - track,loose > > shorewall show routing > Shorewall 4.5.20 Routing at alpdev-2_5_4 - Sat Sep 14 17:25:26 UTC 2013 > > > Routing Rules > > 0: from all lookup local > 999: from all lookup main > 10000: from all fwmark 0x100/0xff00 lookup isp1 > 10001: from all fwmark 0x200/0xff00 lookup isp2 > 32765: from all lookup 250 > 32766: from all lookup main > 32767: from all lookup default > > Table 250: > > > Table default: > > > Table isp1: > > default dev eth0 scope link >
But there is no point in even using Shorewall's Multi-ISP this way since the above route is completely useless on an Ethernet interface. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ LIMITED TIME SALE - Full Year of Microsoft Training For Just $49.99! 1,500+ hours of tutorials including VisualStudio 2012, Windows 8, SharePoint 2013, SQL 2012, MVC 4, more. BEST VALUE: New Multi-Library Power Pack includes Mobile, Cloud, Java, and UX Design. Lowest price ever! Ends 9/22/13. http://pubads.g.doubleclick.net/gampad/clk?id=64545871&iu=/4140/ostg.clktrk
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
