Tom, Thanks - that was the trick and its working as expected. Interfaces: net_t eth1 detect tcpflags,routefilter=0,nosmurfs net_c eth3 detect tcpflags,routefilter,nosmurfs loc eth0 detect tcpflags,nosmurfs,routeback
Eth0 => local (192.168.0.0/16 and 172.16.0.0/16) Eth1 => sprint internet Eth3 => cable intenet Providers: CABLE 1 1 main eth3 66.211.31.193 track,balance eth0 SPRINT 2 2 main eth1 63.168.72.9 track,fallback eth0 Masq: eth1 66.211.31.197 63.168.72.10 eth3 63.168.72.10 66.211.31.197 eth1 192.168.0.0/16 63.168.72.10 eth1 172.16.1.0/16 63.168.72.10 eth3 192.168.0.0/16 66.211.31.197 eth3 172.16.1.0/16 66.211.31.197 rtrules: eth0 - CABLE 1000 Vernon -----Original Message----- From: Tom Eastep [mailto:[email protected]] Sent: Tuesday, November 20, 2012 2:40 PM To: [email protected] Subject: Re: [Shorewall-users] Multi ISP default route to one provider On 11/20/2012 12:11 PM, Vernon Fort wrote: > Yes - this is the setup that I'm trying to change. When I set SPRINT > provider to track,fallback - all my DNATs stop working and I get > continual stream of martians in dmesg. There use to be a older > configuration setup that stated to change > Shorewall.conf/Trackprovider to Yes and set the notrack option in the > providers file but that doesn't work either. > You *must* disable route filtering on a fallback interface. In /etc/shorewall/interfaces, specify 'routefilter=0,logmartians=0' or disable them in sysctl.conf. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________ ------------------------------------------------------------------------------ Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users ------------------------------------------------------------------------------ Monitor your physical, virtual and cloud infrastructure from a single web console. Get in-depth insight into apps, servers, databases, vmware, SAP, cloud infrastructure, etc. Download 30-day Free Trial. Pricing starts from $795 for 25 servers or applications! http://p.sf.net/sfu/zoho_dev2dev_nov _______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
