|
I am working on a split route and ShoreWall system. I
reviewed the lartc documentation but have a few areas that I still need help
on. Here is my network: 64.xxx.xxx.1/25 66.xxx.xxx.129/26 | | ################################################# # Eth2 64.xxx.xxx.2 eth0 66.xxx.xxx.130 # # eth2:1 64.xxx.xxx.3 eth0:1 66.xxx.xxx.131 # # eth1 192.168.xxx.1 # ################################################# 192.168.xxx.0/24 Here are the rules as referenced from the lartc split route
section: These are added in /etc/iproute2/rt_tables ip route add 64.xxx.xxx.0/25 dev eth2 src 64.xxx.xxx.2 table
T1 ip route add default via 64.xxx.xxx.1 table T1 ip route add 66.xxx.xxx.0/26 dev eth0 src 66.xxx.xxx.130
table T2 ip route add default via 66.xxx.xxx.129 table T2 main routing tables ip route add 64.xxx.xxx.0/25 dev eth2 src 64.xxx.xxx.2 ip route add 66.xxx.xxx.0/26 dev eth0 src 66.xxx.xxx.130 default route ip route add default via 64.xxx.xxx.1 routing rules ip rule add from 64.xxx.xxx.2 table T1 ip rule add from 64.xxx.xxx.130 table T2 ip route add 192.168.122.0/24 dev eth1 table T1 ip route add 66.xxx.xxx.0/26 dev eth0 table T1 ip route add 127.0.0.0/8 dev lo table T1 ip route add 192.168.xxx.0/24 dev eth1 table T2 ip route add 64.xxx.xxx.0/25 dev eth2 table T2 ip route add 127.0.0.0/8 dev lo table T2 I run web servers behind this firewall and will be using
split route as a transition tool from old circuit to new circuits I also may
keep eth0 network haven’t decided yet. Here are my questions: On each wan interface I am running alias’ as
referenced in the above diagram eth2:1, eth2:2 and so on where do these need to
be specified in my above rule set is there a way to just set the route via
interface instead of specifying each ip? Do all of the rules in each section above go into rt_tables
and if not where do they go respectively it doesn’t seem to be stated
clearly in the lartc section on split routes? Is there anything I am missing? Thanks very much for your help. |
