Greetings-
I've been doing quite a bit of digging and experimenting, and I've not
found much in the way of answers or solutions. Frankly, I've not found
anyone who's attempting to do what I am. I hope that the capability is
there and no one has thus far put it into practice.
I have a single linux (RedHat 5.2) box with quite a few ethernet
interfaces- nine, i believe. (ZNYX quad 10/100Base-T cards. Works fine
with the tulip driver, some troubles with autonegotiation... but have
those almost worked out. Anyone else using these cards?)
I have multiple internal LAN segments which I would like to masquerade.
Let's call these eth4 and eth5 for the purposes of this example. There may
or may not be more now or in the future.
I have two external interfaces, we'll call them eth0 and eth1. These are
connected to two separate routers, heading out to the internet. We'll call
eth0's connection ISP0, and eth1's connection ISP1.
I currently have eth4 and eth5 masq'd out eth1 to ISP1. No problems.
I would like to have eth4 masq'd out eth0, and eth5 masq'd out eth1.
My masquerading rules - using Kernel 2.0.36 and ipfwadm - when set to
specify eth1 as my external interface, work... when I change them to eth0,
they fail, unless i change routing such that eth0 is the only default
route.
I can specify multiple default routes, out eth0 and eth1 to the ISP0 and
ISP1 routers, and I can give one a higher preference by setting one with a
metric of 0 and another with a metric of 1.
Despite changing routing about, I cannot get the desired results- eth4
masq'd out eth0 and eth5 masq'd out eth1.
I can go into further detail, but first off- is this possible? Is there
somewhere I can go other than the ip_masq.c source that will give me a
little more in-depth information on the goings-on behind the scenes?
Any information would be greatly appreciated.
Many thanks in advance,
-jeff
Jeff Godin
Network Specialist
Traverse Area District Library
[EMAIL PROTECTED] - 616/932-8546 voice
_______________________________________________
Masq maillist - [EMAIL PROTECTED]
http://tiffany.indyramp.com/mailman/listinfo/masq
Admin requests can be handled by web (above) or [EMAIL PROTECTED]
