iptables -t mangle -A FORWARD -m u32 --u32 "16&0x0001=0x0000" -j MARK --set-mark 0x10
error> iptables v1.2.11: Couldn't load match `u32':/lib/iptables/libipt_u32.so: cannot open shared object file: No such file or directory
I m using FC3 Linux Kernel 2.6.9-1.667
Any further pointer?
---------- Forwarded message ----------
From: Marek Kierdelewicz <marek@xxxxxxxxx>
To: lartc@xxxxxxxxxxxxxxx
Date: Sun, 2 Sep 2007 13:33:11 +0200
Subject: Re: Re: 2 ISP connection sharing problem
Hi,
>Thats fine but primary problem is that only one connection is used at a
>time but I want to utilize both at the same time. Please guide
You have iptables based options to solve this problem:
1) You can use u32 module to mark and then route packets based on the
destination address
example use of u32:
$IPT -t mangle -A FORWARD -m u32 --u32 "16&0x0001=0x0000" -j MARK
--set-mark 0x10
(packets to addresses with last bit UNSET will be marked with 0x10
value)
$IPT -t mangle -A FORWARD -m u32 --u32 "16&0x0001=0x0001" -j MARK
--set-mark 0x11
(packets to addresses with last bit SET will be marked with 0x10
value)
Then you add routing policy rules:
ip ru add fwmark 0x10 table T1 prio 100
ip ru add fwmark 0x11 table T2 prio 100
2) You can use statistics and connmark module to balance connections
between two links
Sorry, no fish here, only fishing rod. I don't have a working config
similar to what you need and making something up would be to time
consuming.
connmark module: http://home.regit.org/?page_id=7
statistic module: it's poorly documented, but you can use it like
that...
"-m statistic --mode random --probability PERCENT"
Basic idea is to mark some percent of NEW connection with mark 0x10
and rest with 0x11. Then you add policy routes like in example above.
Good luck.
Cheers,
Marek Kierdelewicz
KoBa ISP
_______________________________________________ LARTC mailing list LARTC@xxxxxxxxxxxxxxx http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
