On 07/20/2017 03:59 AM, andreil1 wrote: > > >> On 20 Jul 2017, at 13:33, Simon Hobson <li...@thehobsons.co.uk> wrote: >> >> andreil1 <andre...@starlett.lv> wrote: >> >>> shorewall disable LTC1 <— Doesn’t work >>> >>> ERROR: LTC1 is not an optional provider interface: Firewall state not >>> changed >>> /usr/share/shorewall/lib.common: line 93: 28414 Terminated >>> $SHOREWALL_SHELL $script $options $@ >>> >>> Should I mark both providers (main LTC1 and failover backup BTC2) as >>> optional ? >> >> >> Possibly, but looking at http://shorewall.org/MultiISP.html it says that >> option has been deprecated and moved to the interfaces file. > > Added to interfaces, now I can disable LTC1. > However, no traffic go through BTC2 in any case. > > What could be the problem ? >
You need the 'fallback' option on BTC2. I also suggest that you set the 'persistent' option on both interfaces. Finally, I wonder why you don't just use FOOLSM. It is well tested and does exactly what you want. -Tom -- Tom Eastep \ Q: What do you get when you cross a mobster with Shoreline, \ an international standard? Washington, USA \ A: Someone who makes you an offer you can't http://shorewall.org \ understand \_______________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Check out the vibrant tech community on one of the world's most engaging tech sites, Slashdot.org! http://sdm.link/slashdot
_______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users
