On 17-Jul-07, at 7:18 AM, Tom Eastep wrote:
>> i am worried about the last line - eth3 is an unreliable ISP, but it
>> is shown as default. I want eth1 as default. I have listed eth3 last
>> in every config, so how do I prevent it from being the default.
>
> I don't know -- Shorewall isn't doing
Kenneth Gonsalves wrote:
>
> [EMAIL PROTECTED] lawgon]# ip route ls
> 202.71.146.208/28 dev eth1 proto kernel scope link src
> 202.71.146.210 metric 5
> 192.168.2.0/24 dev eth0 proto kernel scope link src 192.168.2.201
> metric 5
> 192.168.10.0/24 dev eth2 proto kernel scope link s
On 16-Jul-07, at 11:56 PM, Tom Eastep wrote:
>>
>> Follow the above advice and it will work for N external addresses
>> on M
>> external interfaces with L internal LANs for all values of L, M
>> and N.
>
> I've added a section to http://www1.shorewall.net/MultiISP.html
> which should
> clar
Tom Eastep wrote:
> Kenneth Gonsalves wrote:
>> Now I have to add a third isp -
>> what will the masq file look like then?
>>
>
> For each of N firewall external addresses, you need to consider what
> happens if a connection with that address as SOURCE is sent out of each
> of M external interfa
Kenneth Gonsalves wrote:
> On 14-Jul-07, at 7:59 PM, Tom Eastep wrote:
>
>>> balancing works perfectly for http - but not for smtp etc
>>>
>> http is being proxied so it all outgoing connections are from the
>> firewall.
>> One potential problem in your configuration is that you are not
>> mas
On 14-Jul-07, at 7:59 PM, Tom Eastep wrote:
>> balancing works perfectly for http - but not for smtp etc
>>
>
> http is being proxied so it all outgoing connections are from the
> firewall.
> One potential problem in your configuration is that you are not
> masquerading
> the local network (1
Kenneth Gonsalves wrote:
> On 13-Jul-07, at 8:10 PM, Tom Eastep wrote:
>
>> Tom Eastep wrote:
>>> Kenneth Gonsalves wrote:
On 12-Jul-07, at 7:38 PM, Tom Eastep wrote:
> Tom Eastep wrote:
>> Kenneth Gonsalves wrote:
>>> hi,
>>>
>>> forgot to put a subject, so am resend
On 13-Jul-07, at 8:10 PM, Tom Eastep wrote:
> Tom Eastep wrote:
>> Kenneth Gonsalves wrote:
>>> On 12-Jul-07, at 7:38 PM, Tom Eastep wrote:
>>>
Tom Eastep wrote:
> Kenneth Gonsalves wrote:
>> hi,
>>
>> forgot to put a subject, so am resending
>>
>> hi,
>>
>> I
On 13-Jul-07, at 8:10 PM, Tom Eastep wrote:
>> Shorewall multiISP support does not work correctly with kernels built
>> with that option. That is mentioned in the Shorewall MultiISP
>> article.
>
> I notice too that route filtering is enabled on both eth2 and eth3 yet
> martian logging is disab
Tom Eastep wrote:
> Kenneth Gonsalves wrote:
>> On 12-Jul-07, at 7:38 PM, Tom Eastep wrote:
>>
>>> Tom Eastep wrote:
Kenneth Gonsalves wrote:
> hi,
>
> forgot to put a subject, so am resending
>
> hi,
>
> I have been trying to set up shorewall for 2 ISPs and nothing
Kenneth Gonsalves wrote:
> On 12-Jul-07, at 7:38 PM, Tom Eastep wrote:
>
>> Tom Eastep wrote:
>>> Kenneth Gonsalves wrote:
hi,
forgot to put a subject, so am resending
hi,
I have been trying to set up shorewall for 2 ISPs and nothing fancy
but am facing the
On 12-Jul-07, at 7:38 PM, Tom Eastep wrote:
> Tom Eastep wrote:
>> Kenneth Gonsalves wrote:
>>> hi,
>>>
>>> forgot to put a subject, so am resending
>>>
>>> hi,
>>>
>>> I have been trying to set up shorewall for 2 ISPs and nothing fancy
>>> but am facing the problem that smtp,pop,ssh,ping and irc
On 12-Jul-07, at 7:16 PM, Tom Eastep wrote:
Kenneth Gonsalves wrote:
hi,
forgot to put a subject, so am resending
hi,
I have been trying to set up shorewall for 2 ISPs and nothing fancy
but am facing the problem that smtp,pop,ssh,ping and irc dont go
through when I enable the masq. I am run
Tom Eastep wrote:
> Kenneth Gonsalves wrote:
>> hi,
>>
>> forgot to put a subject, so am resending
>>
>> hi,
>>
>> I have been trying to set up shorewall for 2 ISPs and nothing fancy
>> but am facing the problem that smtp,pop,ssh,ping and irc dont go
>> through when I enable the masq. I am running
Kenneth Gonsalves wrote:
> hi,
>
> forgot to put a subject, so am resending
>
> hi,
>
> I have been trying to set up shorewall for 2 ISPs and nothing fancy
> but am facing the problem that smtp,pop,ssh,ping and irc dont go
> through when I enable the masq. I am running Mandriva 2007. My setup is
On 12-Jul-07, at 1:23 PM, Harry Lachanas wrote:
>>
>> my providers file:
>>
>> isp12 2main eth2202.x.x.1
>> balance,track eth0
>> isp2 11main eth3202.x.x.1 balance,track eth0
>>
>
> I've also noticed that the gateway of both ISP1,ISP2 is the sam
>
> my providers file:
>
> isp12 2main eth2202.x.x.1
> balance,track eth0
> isp2 11main eth3202.x.x.1 balance,track eth0
>
I've also noticed that the gateway of both ISP1,ISP2 is the same
Is this a multilink setup or just another typo ??
On 12-Jul-07, at 12:12 PM, Harry Lachanas wrote:
> Try:
> eth2 222.x.x.3 202.x.x.3
> eth3 202.x.x.3 222.x.x.3
>
> I think you have it reversed
thats a typo - i was x-outing the ips - it is correct that is:
eth2 eth3ip eth2ip
eth3 eth2ip eth3ip
--
regards
Kenneth Gonsalves
Assoc
Kenneth Gonsalves wrote:
> hi,
>
> forgot to put a subject, so am resending
>
> hi,
>
> I have been trying to set up shorewall for 2 ISPs and nothing fancy
> but am facing the problem that smtp,pop,ssh,ping and irc dont go
> through when I enable the masq. I am running Mandriva 2007. My setup is:
>
hi,
forgot to put a subject, so am resending
hi,
I have been trying to set up shorewall for 2 ISPs and nothing fancy
but am facing the problem that smtp,pop,ssh,ping and irc dont go
through when I enable the masq. I am running Mandriva 2007. My setup is:
eth0 192.168.2.201 - local lan
eth2 202.
20 matches
Mail list logo
