Re: 2 ISP Routing Problem

Linux Advanced Routing and Traffic Control

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

I read carefully "Guide to IP Layer Networking", but this don't give idea how to make this simple ( I think ) route. My logic is:

If packet coming from source adress 1.0.1.0/24 AND destination is NOT localy connected host ( 1.0.1.0/24 OR 2.0.1.0/24 OR 127.0.0.0/8 ), send it to ISP1 gateway 1.0.0.1.
If packet coming from source adress 2.0.1.0/24 AND destination is NOT localy connected host ( 1.0.1.0/24 OR 2.0.1.0/24 OR 127.0.0.0/8 ), send it to ISP2 gateway 2.0.0.1.
If packet coming ( from ISP1 or ISP2 ) have destination adress 1.0.1.0/24 OR 2.0.1.0/24 send it to coresponding eth interface.

As see, there is NOT default route, all other source/destination combination will be droped ( with ICMP host unreachable may be? ).

I can't believe, that no one use single Linux router like this....



lartc@xxxxxxxxxxxxxxxx writes:

Hello,I have single linux router ( fedora core 1 ), 2 ISP, 1 internal network,1 IP space from every ISP
My scenario:
eth0 1.0.0.2 netmask 255.255.255.252 -> ISP 1
eth1 2.0.0.2 netmask 255.255.255.252 -> ISP 2
eth2 1.0.1.1 netmask 255.255.255.0 -> IP space from ISP1
eth3 2.0.1.1 netmask 255.255.255.0 -> IP space from ISP2

Config I try:
/etc/iproute2/rt_tables:
10 isp1
20 isp2

ip add rule from 1.0.1.0/24 table isp1
ip add rule from 2.0.1.0/24 table isp2
route del default
ip route add default via 1.0.0.1 table isp1
ip route add default via 2.0.0.1 table isp2

At this point workstations connected to eth2 and eth3 connect to internet fine.
BUT: with this config I can't communicate with workstations. If I try 'ping 1.0.1.2' I can see thah all packets with source IP1.0.1.1 are sent to eth0, and packets with source IP 2.0.1.1 are sent to eth1.

#ip route get from 1.0.1.1 to 1.0.1.2
1.0.1.2 from 1.0.1.1 via 1.0.0.1

So, question is: How to setup iproute2, so kernel first consult internal routing table:
1.0.1.0/24 dev eth2 proto kernel scope link src 1.0.1.1
2.0.1.0/24 dev eth3 proto kernel scope link src 2.0.1.1

and AFTER THIS default routes I create with 'ip route default via ...' 

PS: All IP's are real, I don't use 10.x.x.x...
_______________________________________________
LARTC mailing list / LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/



_______________________________________________
LARTC mailing list / LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
[Index of Archives]     [LARTC Home Page]     [Netfilter]     [Netfilter Development]     [Network Development]     [Bugtraq]     [GCC Help]     [Yosemite News]     [Linux Kernel]     [Fedora Users]
  Powered by Linux