Andrew Suffield schreef: >>The ADSL-line is supplied with an ethernet-router, no PPP-links required. >> >> >Since the cheap consumer ADSL routers are usually awful routers and >buggy, limited NAT devices, I always try to arrange for the PPP tunnel >to extend as far as the firewall behind it. Some routers call this >'PPPoE passthrough', others make up names for it, but there's several >on the market that can do it. If you can avoid letting the consumer >junk touch the IP packets, life tends to go much more smoothly. > >Having done that, your problem becomes trivial to solve. > > For ISP1 (adsl): It's not cheap consumer stuff, it's a Arescom NetDSL 1000 supplied by the ISP. It bridges a subnet with 8 ip's which is our private subnet. My Shorwall-box lives in the subnet to provide access (NAT) to the internet from the LAN. Both provider and ADSL-link are of professional level and show *very* little downtime. That's why my first concern is to monitor ISP2.
For ISP2 (cable): this is a consumer-grade link, just to expand our upload-capacity. The cable-modem plugs directly into the server trough ethernet. Thanks everybody for your comments. As I understand: monitoring the gateway from ISP2 is a good indication for the link being down or not. Are there any tools to do this or should I write a script myself for this? Best regards, Sjon Wijnolst ------------------------------------------------------------------------- This SF.net email is sponsored by: Microsoft Defy all challenges. Microsoft(R) Visual Studio 2005. http://clk.atdmt.com/MRT/go/vse0120000070mrt/direct/01/ _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
