Thanks! I have another question though. Suppose all the P2P traffic will follow the default route. The POSTROUTING chain (where the SNAT is performed) is the last one in the kernel. Can I make the P2P be SNAT-ed on a different IP? Or this is the same... The connection is already established, when IPP2P starts to mark packets? I read somewhere in the documentation: "Edonkey is better matched by IPP2P and should not work anymore at all (no searches, no connects, no downloads)". So, no connection for eDonkey... Aren't those packets the first of a TCP connection? Thanks very much, Mihai Vlad -----Original Message----- From: Eicke Friedrich [mailto:tady@xxxxxxx] Sent: Sunday, May 30, 2004 12:40 PM To: Mihai Vlad Subject: Re: Route P2P on separate link Hi, for routing decisions you can only use attributes that are already there with the very first packet of a connection. These is usually OSI Layer 2/3 data (IP adresses, port numbers). IPP2P is using OSI Layer 7 pattern matching - it searches through the payload of TCP packets. As TCP packets can only carry payload if the connection is already established (and therefore the routing decision is already done) you cannot use IPP2P for routing packets. IPP2P will never match the very first packet (SYN) of a TCP connection but this is packet where the routing decision is made. Regards, Eicke. Mihai Vlad wrote: > Hello, > > Is there a way to route p2p traffic on a separate ISP connection, just as > you would choose a separate connection for http traffic? > > I tried all sorts of setups based on: > http://www.braindump.dk/en/wiki/?wikipage=PolicyRouting but with no luck. > > Please help :) > > (ipp2p is up and running) > > > _______________________________________________ LARTC mailing list / LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/mailman/listinfo/lartc HOWTO: http://lartc.org/
