<div><a href="http://netfilter.org">netfilter.org</a> is a alias for <a href="http://iptables.org">iptables.org</a> :-)</div>
<div> </div>
<div>I haven't tested it becouse I was using an other way which I forgot to mention.</div>
<div>You can MARK packets using iptables as comming from an interface and later route by this MARK using normal routing technics.</div>
<div>Its all described in <a href="http://lartc.org">lartc.org</a> and took me half a day to get it working without knowing anything :-)</div>
<div> </div>
<div><span class="gmail_quote">On 5/9/05, <b class="gmail_sendername">Joe Devich</b> <<a href="mailto:joe@mosaix.net">joe@mosaix.net</a>> wrote:</span></div>
<div>
<blockquote class="gmail_quote" style="PADDING-LEFT: 1ex; MARGIN: 0px 0px 0px 0.8ex; BORDER-LEFT: #ccc 1px solid">
<div>
<p><font face="Verdana Ref" color="black" size="2"><span style="FONT-SIZE: 10pt; COLOR: black">OK, thanks. Researching your answer also turned me on the <a onclick="return top.js.OpenExtLink(window,event,this)" href="http://netfilter.org/" target="_blank">
netfilter.org</a> website, which I didn't know about. Have you used/tested the ROUTE patch?</span></font></p>
<p><font face="Verdana Ref" color="black" size="2"><span style="FONT-SIZE: 10pt; COLOR: black"> </span></font></p>
<p><font face="Verdana Ref" color="black" size="2"><span style="FONT-SIZE: 10pt; COLOR: black"> </span></font></p>
<p><font face="Verdana Ref" color="black" size="2"><span style="FONT-SIZE: 10pt; COLOR: black">Regards,</span></font></p><span class="sg">
<p><font face="Verdana Ref" color="black" size="2"><span style="FONT-SIZE: 10pt; COLOR: black"> </span></font></p>
<p><font face="Verdana Ref" color="black" size="2"><span style="FONT-SIZE: 10pt; COLOR: black">Joe</span></font></p></span>
<div><span class="e" id="q_103c1ed417acf75b_2">
<div>
<p><font face="Times New Roman" color="black" size="3"><span style="FONT-SIZE: 12pt; COLOR: black"> </span></font></p>
<p><font face="Times New Roman" color="black" size="3"><span style="FONT-SIZE: 12pt; COLOR: black"> </span></font></p></div>
<p><font face="Tahoma" size="2"><span style="FONT-SIZE: 10pt; FONT-FAMILY: Tahoma">-----Original Message-----<br><b><span style="FONT-WEIGHT: bold">From:</span></b> Krystian Antoni [mailto:<a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:krystianantoni@gmail.com" target="_blank">
krystianantoni@gmail.com</a>] <br><b><span style="FONT-WEIGHT: bold">Sent:</span></b> Sunday, May 08, 2005 12:52 PM<br><b><span style="FONT-WEIGHT: bold">To:</span></b> Joe Devich<br><b><span style="FONT-WEIGHT: bold">Subject:
</span></b> Re: [LARTC] Routing by interface as opposed to ip address?</span></font></p>
<p><font face="Times New Roman" size="3"><span style="FONT-SIZE: 12pt"> </span></font></p>
<p style="MARGIN-BOTTOM: 12pt"><font face="Times New Roman" size="3"><span style="FONT-SIZE: 12pt">there is a iptables target module named ROUTE. it can help u<br><br></span></font></p>
<div>
<p><span><font face="Times New Roman" size="3"><span style="FONT-SIZE: 12pt">On 5/6/05, <b><span style="FONT-WEIGHT: bold">Joe Devich</span></b> <<a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:joe@mosaix.net" target="_blank">
joe@mosaix.net</a>> wrote:</span></font></span></p>
<p><font face="Times New Roman" size="3"><span style="FONT-SIZE: 12pt">Hello all,<br><br>Does anyone know of a methodology to build a route based on the inbound<br>and outbound interfaces as opposed to ip addresses? We are essentially
<br>trying to forward packets from one interface to another without looking <br>at the ip address. Bridging (brctl, br2684ctl) will not work in this<br>case as the interfaces use different layer 2 encapsulation (e.g.,<br>
atm0<=>eth0, or ppp0<=>eth0).<br><br>We could build a rule to match the incoming interface, then point to a <br>routing table with a default route set to the outbound interface. The<br>problem, with this approach is the limit of 255 routing tables in
<br>iproute2. Presumably, it would consume 2 routing tables for each<br>"connection" (one forward, one reverse). We need more than 126 <br>"connections" per box.<br><br>Some commercial routers allow policy routing using only the interfaces
<br>with ACL's, but it's not clear how this could be implemented in linux.<br>We use debian (2.4 kernel) distro with iproute2, iptables, etc. Any <br>suggestions would be most welcome.<br><br>Cheers,<br><br>Joe Devich<br>
<br>_______________________________________________<br>LARTC mailing list<br><a onclick="return top.js.OpenExtLink(window,event,this)" href="mailto:LARTC@mailman.ds9a.nl" target="_blank">LARTC@mailman.ds9a.nl</a><br><a onclick="return top.js.OpenExtLink(window,event,this)" href="http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc" target="_blank">
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc</a></span></font></p></div>
<p><font face="Times New Roman" size="3"><span style="FONT-SIZE: 12pt"><br><br><br>-- <br>Miłego Dnia<br>Krystian Antoni </span></font></p></span></div></div></blockquote></div><br><br><br>-- <br>Miłego Dnia<br>Krystian Antoni