I get following error while run the command iptables -t mangle -A FORWARD -m u32 --u32 "16&0x0001=0x0000" -j MARK --set-mark 0x10
error> iptables v1.2.11: Couldn't load match `u32':/lib/iptables/libipt_u32.so: cannot open shared object file: No such file or directory I m using FC3 Linux Kernel 2.6.9-1.667 Any further pointer? ---------- Forwarded message ---------- From: Marek Kierdelewicz <[EMAIL PROTECTED]> To: lartc@mailman.ds9a.nl Date: Sun, 2 Sep 2007 13:33:11 +0200 Subject: Re: Re: [LARTC] 2 ISP connection sharing problem Hi, >Thats fine but primary problem is that only one connection is used at a >time but I want to utilize both at the same time. Please guide You have iptables based options to solve this problem: 1) You can use u32 module to mark and then route packets based on the destination address example use of u32: $IPT -t mangle -A FORWARD -m u32 --u32 "16&0x0001=0x0000" -j MARK --set-mark 0x10 (packets to addresses with last bit UNSET will be marked with 0x10 value) $IPT -t mangle -A FORWARD -m u32 --u32 "16&0x0001=0x0001" -j MARK --set-mark 0x11 (packets to addresses with last bit SET will be marked with 0x10 value) Then you add routing policy rules: ip ru add fwmark 0x10 table T1 prio 100 ip ru add fwmark 0x11 table T2 prio 100 2) You can use statistics and connmark module to balance connections between two links Sorry, no fish here, only fishing rod. I don't have a working config similar to what you need and making something up would be to time consuming. connmark module: http://home.regit.org/?page_id=7 statistic module: it's poorly documented, but you can use it like that... "-m statistic --mode random --probability PERCENT" Basic idea is to mark some percent of NEW connection with mark 0x10 and rest with 0x11. Then you add policy routes like in example above. Good luck. Cheers, Marek Kierdelewicz KoBa ISP
_______________________________________________ LARTC mailing list LARTC@mailman.ds9a.nl http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
