On 16 May 2003 10:27:47 UT,
<rwaeger@xxxxxxxxxx> wrote in message
<000147C2.3EC4D93D@xxxxxxxxxxxxxxx>:
> Hi!
>
> Maybe a routing and iptables guru can help me....
>
> We're trying to setup a policy based Linux router to route "normal"
> services (like http(s) or ftp) over a DSL line and all other services
> (like smtp, ssh, pop3) over a leased line. The leased line router is
> listening to an official IP net. There are some internal servers (mail
> and web) which are using official IPs (but nated at Firewall-1). All
> traffic for and from these servers have to go over eth1.
>
..you checked out 'ip rule help'?
[arnt@xxxx arnt]$ /sbin/ip rule help
Usage: ip rule [ list | add | del ] SELECTOR ACTION
SELECTOR := [ from PREFIX ] [ to PREFIX ] [ tos TOS ] [ fwmark FWMARK ]
[ dev STRING ] [ pref NUMBER ]
ACTION := [ table TABLE_ID ] [ nat ADDRESS ]
[ prohibit | reject | unreachable ]
[ realms [SRCREALM/]DSTREALM ]
TABLE_ID := [ local | main | default | NUMBER ]
--
..med vennlig hilsen = with Kind Regards from Arnt... ;-)
...with a number of polar bear hunters in his ancestry...
Scenarios always come in sets of three:
best case, worst case, and just in case.
