On 06/06/2013 02:47 AM, timothée cocault wrote: > Hi, > > I'm using Shorewall and LSM to load-balance 3 ISPs. > My configuration works, but when an ISP is disabled, LSM is unable to > ping from the associated interface. > > I understand why it happens : when `shorewall disable isp1` is called, > Shorewall flushes the routing table isp1, and removes the nexthop in the > balance table. > So when I want to ping 8.8.8.8 from eth1, no rule allows it. > > I've STFW'd, but the only trick I found is to add a default route to > eth1 in the default table. > The problem is, this only works with 1 ISP, as I can't add 3 default routes. > > So what is the best way to manage this ? >
Add host routes to the hosts that you want LSM to ping. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ How ServiceNow helps IT people transform IT departments: 1. A cloud service to automate IT design, transition and operations 2. Dashboards that offer high-level views of enterprise services 3. A single system of record for all IT processes http://p.sf.net/sfu/servicenow-d2d-j
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
