Just thought of a problem doing that - the email server is on the gateway/firewall box itself.... Can SNAT still be used in this case? I.e.: iptables -t nat -A POSTROUTING -o $extIF --sport 25 -d 0/0 -j SNAT --to $PriIP iptables -t nat -A POSTROUTING -o $extIF --dport 25 -d 0/0 -j SNAT --to $PriIP > -----Original Message----- > From: xerox@xxxxxxxxxx [mailto:xerox@xxxxxxxxxx] > Sent: Monday, 8 March 2004 3:21 PM > To: Bryan Nolen > Subject: Re: email/ftp over one connection, all else > over second connection > > > If the box is doing NAT, which I assume it is, all you have > to do is SNAT > and for certain ports like web and such make it use the > source ip of the > asym link and so on.. should be real simple in that config :> > > > On Mon, 8 Mar 2004, Bryan Nolen wrote: > > > Hi all, > > > > Just wondering what the easiest way to do the following is: > > > > We have two connections (routed ADSL) - a 512k/512k > symmetrical and a > > 1.5M/256k asymmetrical, what I would like is for all email > and FTP traffic > > to use the symmetrical link, and all other internet traffic > to use the > > asymmetrical link. The symmetrical link is already set as > the primary MX, so > > source routing problems aside - how can this be done? > > > > Using IPTables ROUTE target? using IPRoute2 (ideally)? > > > > The reasons for doing it this way is this company needs a > reliable email and > > ftp channel, but they also do a lot of "surfing" so I would > like the isolate > > the two distinct traffic types in order to optimise traffic flow. > > > > All help is welcome. > > > > -Bryan > > > > Bryan Nolen > > Lead Developer, Arc.Net.Au > > Ph: 03 9499 2929 > > Fax: 03 9854 5436 > > Mobile: 0402 022 292 > > Email: bryan@xxxxxxxxxxxxx or reveng@xxxxxxxxxx > > http://Arc.Net.AU > > http://cdonline.com.au > > > > _______________________________________________ > > LARTC mailing list / LARTC@xxxxxxxxxxxxxxx > > http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/ > _______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
