<< | Thread Index | >> ]    [ << | Date Index | >> ]

Subject: Re: cipe + traffic shaping -> crash
From: Holger Marzen <holger,AT,marzen,DOT,de>
Date: Tue, 2 Jul 2002 14:21:01 +0200
In-reply-to: <OF663BE2E3.A221D3A5-ONC1256BEA.002DE56B-C1256BEA.002D1661@medisearch-int.com>

On Tue, 2 Jul 2002 Gert.Vandelaer,AT,medisearch-int,DOT,com wrote:

>
> When you say policy routing, do you mean something like
>
> iptables -A FORWARD -i "internal nic" -s "internal network" -o "cipe nic"
> -d "other vpn lan" -j ACCEPT
> iptables -A FORWARD -i "cipe nic" -s "other vpn lan" -o "internal nic" -d
> "internal network" -j ACCEPT

No, I force an outgoing interface with the iproute2 package. It works by
creating different routing tables and then assign them according to
rules:

Outgoing ip == ip of cipe-interface -> force usage of routing table xxx

And xxx is a routing table that contains only one route, a default route
via the cipe interface.





<< | Thread Index | >> ]    [ << | Date Index | >> ]