Hi all
I have a problem splitting traffic behind 2 adsl.
My situation:
_________router2
|
lan1 ------- fw ----------- router1
|
lan2----------|
lan1 use router1, lan2 router2.
The linux default gw is set to router2, lan2 browse internet without
any problem (icmp, tcp..).
Lan1 is blocked.
>From lan1 i can ping router1, and i've set this iproute rules:
ip route add 10.0.0.0/24 dev dmz0 table cnet
ip route add 195.43.x.x dev bad0 table cnet (firewall interface ip
address connected to router1)
ip route add 192.168.1.0/24 dev lan0 table cnet
ip route add default via 195.43.x.x dev bad0 table cnet (router1 ip address)
ip rule add from 195.43.x.x/29 lookup cnet
ip rule add to 195.43.x.x/29 lookup cnet
ip rule add from 10.0.0.0/24 lookup cnet
ip rule add to 10.0.0.0/24 lookup cnet
Now, i try to ping a public dns server from lan1
ping 194.20.8.1
PING 194.20.8.1 (194.20.8.1) 56(84) bytes of data.
--- 194.20.8.1 ping statistics ---
5 packets transmitted, 0 received, 100% packet loss, time 3999ms
tcpdump on my firewall, monitoring interface bad0 connected to router1 show:
15:09:35.148181 IP 195.43.186.50 > urano.inet.it: icmp 64: echo request seq 1
15:09:35.171411 IP urano.inet.it > 195.43.186.50: icmp 64: echo reply seq 1
15:09:36.147390 IP 195.43.186.50 > urano.inet.it: icmp 64: echo request seq 2
15:09:36.177859 IP urano.inet.it > 195.43.186.50: icmp 64: echo reply seq 2
15:09:37.146904 IP 195.43.186.50 > urano.inet.it: icmp 64: echo request seq 3
15:09:37.173226 IP urano.inet.it > 195.43.186.50: icmp 64: echo reply seq 3
[...]
it seems ok.. but it isn't..
Any suggestion?
My firewall log don't show anything, i tried to open all port in
forward, but the result is still the same.
best regards
Marco
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
