On Sat, 2012-03-03 at 01:49 +0200, cmlitguy@xxxxxxxxx wrote: > Hello, > I have a question about possibility of making a redirect if NAT out > interface tun0 is down. > This is iptables rule for Masquerading our network via VPN connection. > > iptables --table nat --append POSTROUTING --out-interface tun0 -j MASQUERADE -m comment --comment "Masquerading" > > When VPN goes down, we can't access some resources and we need to verify > its status and establish it again. > Is it possible to make a redirect of all traffic to another host - Web > Site(via IP address) of tun0 is down ? If the interface actually does "down", then I would use your operating system's networking scripts to run a "down" script. E.g. for Debian use /etc/network/interfaces If it just stops responding, then I'd consider LSM[1] to monitor it and do something similar. [1] http://lsm.foobar.fi/ -- To unsubscribe from this list: send the line "unsubscribe netfilter" in the body of a message to majordomo@xxxxxxxxxxxxxxx More majordomo info at http://vger.kernel.org/majordomo-info.html
