On Thu, 2011-10-20 at 00:21 -0600, Jeff Taylor wrote: > I run a firewall with dual ISP connections, and get my IPv6 through a tunnel > at > Hurricane Electric. Today HE added new filtering which prevents > cross-traffic > between tunnels, which pointed out a problem with my setup in that queries on > one tunnel are indiscriminately being answered through the other tunnel. I > was > told that the solution to this situation lies in source-based routing... > > Now this seems to point out an issue which I have found few solutions to, and > even what I have configured now is something I would consider a poor hack. > So I > am looking for a proper solution for multi-ISP setups, whereby any packets > routed through my firewall to a local server will have the output sent back > through the *same* ISP interface. Surely there is some simple configuration > within shorewall (and shorewall6) that I have not discovered which will > provide > this? From what little I have discovered, I would assume the answer lies > back > in the originally mentioned source-based routing, but I can't seem to find > any > info on configuring this under shorewall. > > Any help, please?
http://www.shorewall.net/MultiISP.html. Note that there is no separate IPv6 documentation and that 'balance' isn't available with IPv6. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: This is a digitally signed message part
------------------------------------------------------------------------------ The demand for IT networking professionals continues to grow, and the demand for specialized networking skills is growing even more rapidly. Take a complimentary Learning@Ciosco Self-Assessment and learn about Cisco certifications, training, and career opportunities. http://p.sf.net/sfu/cisco-dev2dev
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
