|
Hi
I have a firewall with 30 clients behind
it.
I am using policy routing. (Meaning that next hop
router is chosen by source IP address)
There are 2 Internet connections, and I am doing
masqurading on both interfaces.
After a couple of hours, it stops working. And I
get this error in the message file: MASQUERADE: No route: Rusty's brain
broke!
On google I found a solution of the problem.
But it doesent work.
(The solution was to increase some kernel
values:
sysctl -w
net.ipv4.neigh.default.gc_thresh1=1024
sysctl -w net.ipv4.neigh.default.gc_thresh2=4096 sysctl -w net.ipv4.neigh.default.gc_thresh3=8192 sysctl -w net.ipv4.neigh.eth0.gc_stale_time=480 sysctl -w net.ipv4.neigh.eth1.gc_stale_time=480 sysctl -w net.ipv4.neigh.eth2.gc_stale_time=480 sysctl -w net.ipv4.neigh.lo.gc_stale_time=480 sysctl -w net.ipv4.neigh.default.gc_stale_time=480) Does anyone have a solution for this
problem?
P.S. The machine is running SuSE 9.0
TIA
Søren Kent Jensen
|
