[LARTC] 2 isp's problem
azero azero
azero@linux.net
Mon, 23 Feb 2004 04:37:18 -0800 (PST)
hi,
Im tryig to use two isp links get worked:
first isp 212.122.xx.254 (gw)
second isp 10.10.xx.2 (gw)
my ip1 212.122.xx.90 (eth0)
my ip2 10.10.xx.254 (eth1)
internal network
my ip 192.168.1.254 (eth2)
turn on masquerading on both links:
$IPTABLES -t nat -A POSTROUTING -o eth0 -j SNAT --to 212.122.xx.90
$IPTABLES -t nat -A POSTROUTING -o eth1 -j SNAT --to 10.10.xx.2
mark packets on 6667 port:
$IPTABLES -A PREROUTING -i eth0 -t mangle -p tcp --dport 6667 \
-j MARK --set-mark 1
(^^should it be eth1 or eth2?^^)
make routes (iproute):
ip route add default via 212.122.xx.254 (default route through first isp)
create table antras.out:
echo 201 antras.out >> /etc/iproute2/rt_tables
assign fwmark:
ip rule add fwmark 1 table antras.out
add rule:
ip rule add default via 10.10.xx.254 dev eth1 table antras.out
turn off rpf filter:
for i in /proc/sys/net/ipv4/conf/*/rp_filter ; do
echo 0 > $i
done
the problem is that when i try to connect irc it doesn't connect (connection timeout)
(i want that irc connect through second isp)
what's the problem ?
#ip rule ls
0: from all lookup local
32765: from all fwmark 1 lookup antras.out
32766: from all lookup main
32767: from all lookup default
#ip route ls
212.122.xx.0/24 dev eth0 proto kernel scope link src 212.122.xx.90
192.168.1.0/24 dev eth2 proto kernel scope link src 192.168.1.254
10.10.xx.0/24 dev eth1 proto kernel scope link src 10.10.xx.254
default via 212.122.xx.254 dev eth0
Thanx for a help
Vaidas.
_____________________________________________________________
Linux.Net -->Open Source to everyone
Powered by Linare Corporation
http://www.linare.com/