#1. Only perform this on state 'new' packets. After that, let snat take care of making sure they go through the right interface.
#2. You need the 'route' patch as well..
The rules that you define will only work if the packets are going to the correct interface to begin with. To allow every 4th CONNECTION to travel through each interface as you described below, you might want to try:
iptables -t nat -A POSTROUTING -m nth --every 4 --packet 0 -m state --state new -m route --oif ppp0 iptables -t nat -A POSTROUTING -m nth --every 4 --packet 1 -m state --state new -m route --oif ppp1 iptables -t nat -A POSTROUTING -m nth --every 4 --packet 2 -m state --state new -m route --oif ppp2 iptables -t nat -A POSTROUTING -m nth --every 4 --packet 3 -m state --state new -m route --oif ppp2
As described earier, this does not guarantee 100% load balancing, but it will help.
I'm not sure if NTH does not work well with the masquerade target (has anybody use NTH and Masquerade succesfully????) or if i'm applying the wrong rule (below are my rules) or if just the NTH patch doesn't really work....
any ideas or suggestions are all very welcome....
Here are my rules:
iptables -t nat -A POSTROUTING -m nth --every 4 --packet 0 -o ppp0 -j MASQUERADE
iptables -t nat -A POSTROUTING -m nth --every 4 --packet 1 -o ppp1 -j MASQUERADE
iptables -t nat -A POSTROUTING -m nth --every 4 --packet 2 -o ppp2 -j MASQUERADE
iptables -t nat -A POSTROUTING -m nth --every 4 --packet 3 -o ppp2 -j MASQUERADE
