On 4/9/13 7:46 AM, "Göran Höglund" <goran.hogl...@telemar.se> wrote:

>Hi List,
>I get a funny problem when I use Multiple ISP setup from the shorewall
>documentation.
>
>I use it for failover between two different carriers.
>I use lsm as described and are using shorewall version 4.5.5.1 on a
>centos 6.4 box.
>
>My issue is routing, when lsm change to the backup my browsing is using
>the backup IF, Fine ...
>
>But if I set a continuous ping on a PC behind the firewall these pings
>want change IF??
>So if I start a ping when the backup is active it want switch over to
>the normal isp when it is restored, but browsing does.
>
>I assume this is easy when you know but I don't and it bugs me

A continuous 'ping' creates a connection tracking entry and in a multi-ISP
setup, each conntrack entry is tied to a single provider. This is the same
with *any* connection. So when the the primary connection comes up, *all*
connections that are currently using the backup continue to use the backup
until they are closed. Only *new* connections will use the primary
provider.

-Tom
You do not need a parachute to skydive. You only need a parachute to
skydive twice.





------------------------------------------------------------------------------
Precog is a next-generation analytics platform capable of advanced
analytics on semi-structured data. The platform includes APIs for building
apps and a phenomenal toolset for data science. Developers can use
our toolset for easy data analysis & visualization. Get a free account!
http://www2.precog.com/precogplatform/slashdotnewsletter
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to