On Tue, 1 Jun 2010, Mike wrote: > Thanks Joe, > > They are on different segments. Those two NICs share nothing but the > server. > > But more to the point, it doesn't explain why a simple routing rule matching > the destination by IP address works wonderfully, but not one where I match a > fwmark that has been set (apparently correctly according to my logging) with > iptables. > > Mike
Is this the same thread about having multiple ISP's, and you have external phones hitting the asterisk server on one or the other, and you want the replies to come back on the same segment they came in on? I think IP mangling is making it way too complicated. I suggested you front each segment with a NAT router. Unless you are expecting very heavy traffic volumes, even a cheapo $50 router from Officemax should suffice. Create two internal subnets - one for each interface. Set each router in "DMZ" mode, so it will send all inbound traffic to the asterisk server on the appropriate interface. The asterisk server will then think that the connection is coming from a locally attached phone, and it will respond out the correct NIC, using the correct IP. The NAT router will send it back out the right Internet connection using the appropriate public IP. j -- _____________________________________________________________________ -- Bandwidth and Colocation Provided by http://www.api-digital.com -- New to Asterisk? Join us for a live introductory webinar every Thurs: http://www.asterisk.org/hello asterisk-users mailing list To UNSUBSCRIBE or update options visit: http://lists.digium.com/mailman/listinfo/asterisk-users
