On Sep 3, 2007, at 10:22 PM, Jefferson Ogata wrote:
On 09/03/07 13:47, Thomas Backman wrote:
Any hints?
As you might notice, I have very little idea what I'm doing here, at
least the ipfilter related parts, but I'd love if I could get this
working - it'd be a waste to not use both connections, and I'd rather
not switch back to Linux.
You might try enabling the strong end system model:
http://www.sean.de/Solaris/soltune.html#ip_strict_dst_multihoming
Thanks, that seems like a sensible thing to do. Unfortunately, it didn't
solve my problems (but it might have gotten me a bit further).
When I start out experimenting, I have elxl0 NAT:ed and elxl1 down.
I start up elxl1, and the NAT stops working every few HTTP requests -
my guess is that Solaris routes then to the wrong NIC and the response
(if it even gets out on the wire) is lost. However, I can't remove
any of
the (two) default routes, because they are both needed, it seems.
I haven't been able to write an ipf rule to route the NAT:ed packets
without a kernel route, is that even possible? If it is, I have the
syntax
wrong. :)
Regards,
Thomas
