Re: netfilter before routing for local outgoing packets ?

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Hello sir....I'm but a humble rookie. Yet, i recently, and very proudly compiled my first kernel. And this is a feature/option selectable in the kernel configuration, called "NAT of locak connections", under Networking Options > Networking Configuration. By the way, that was kernel 2.4.22.

Someone correct me if I'm wrong please.
Peace.


Jean Tourrilhes wrote:


Hi,

	After reading various documentations, I've hit a deadlock. I
hope you guys can help me.
	<Not suscribed to the list, please cc me>

	What I want to do :
	I want to be able to route a specific *local* application
differently from other applications. A crude simplification would be
to route 'telnet' via eth0 and 'http' via eth1. In practice, I would
really like the flexibility of having two set of routes.

	I can define multiple routing tables (via 'ip route'), and set
some rules defining which table should be used (via 'ip rule'). Those
rules arebased on source address, dest address, TOS or
fwmark. Netfilter allow me to set TOS or fwmark based on more or less
what I want.
		http://en.tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.netfilter.html
		http://linux-ip.net/html/tools-ip-rule.html
		http://linux-ip.net/html/adv-multi-internet.html
		(Excellent document by the way !)

	Unfortunately, local outgoing packet don't seem to go through
netfilter before passing through the routing table.
		http://www.docum.org/stef.coene/qos/kptd/

	Did I miss something obvious ? Is there any way to use 'ip
rule' for local outgoing traffic ? Is there any other mechanism that
would do what I want ?

Thanks...

Jean








[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux