Date: Fri, 07 Nov 2003 07:15:30 -0800 From: Lars Eggert <larse@ISI.EDU> To: Helge Oldach <helge.oldach@atosorigin.com> Cc: freebsd-net@freebsd.org Subject: Re: Routing With Two ISPs? Message-ID: <3FABB712.7050905@isi.edu> In-Reply-To: <200311070759.IAA19949@galaxy.hbg.de.ao-srv.com> References: <200311070759.IAA19949@galaxy.hbg.de.ao-srv.com>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --]
Helge Oldach wrote:
> Drew Tomlinson:
>
>>I have a 4.8 box serving as a gateway with two connections to the
>>Internet. Is there some way to set the box up so that packets are
>>routed out through the same interface from which they arrived? For
>>example, if a connection is initiated on port 80 from a packet arriving
>>on one interface, is there a way to make the outgoing packets from my
>>web server use that same interface as a gateway instead of the default
>>interface?
>
>
> Unfortunately not. While your application (multi-homing, aka "strong ES"
> model of RFC 1122) would appear simpler, a general solution would target
> at true policy-based routing.
For some simple setups, you can use ipfw fwd rules to forward on
something other than destination address.
But I agree that for more complex things you need some implementation of
policy routing.
Lars
--
Lars Eggert <larse@isi.edu> USC Information Sciences Institute
[-- Attachment #2 --]
0 *H
01
0 +�0 *H
�� 080fErtcvE.0
*H
�01
0 UZA10U
Western Cape10U Cape Town10U
Thawte Consulting1(0&U
Certification Services Division1$0"UThawte Personal Freemail CA1+0) *H
personal-freemail@thawte.com0
000830000000Z
040827235959Z01
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.3000
*H
��0�32c %E>nx'gڈD)c5*mp<ܮto034qmOe
KaU5u'rװ
|CBPQ<9TIf�- ki�N0L0)U
"0
0
10UPrivateLabel1-2970U
0�0
U
0
*H
��1KG]qSl]y=&b""I'{9$
*8PUl
LGl
X1B li+@]jy.%݊
Z<D&iHΥbb090
vo0
*H
�01
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.300
030801172929Z
040731172929Z0T10
UEggert1
0
U*Lars10U
Lars Eggert1
0 *H
larse@isi.edu0"0
*H
��0
�>ן~H(ԢGV׆־25B03ݰת^RIH
�=%J
kA^R)y�H80P ~qrU|c~\;ҋ^哪
!֍
&d@Cd"O"f$FrGe|r<z"%h+Z`3<}̘}9ʮcnb6RX ٫e~XgK7,ìEYU?�V0T0*+e!0 �00L2uMyffBNUbNJJcdZ2s0U
0
larse@isi.edu0
U
0�0
*H
��5Kkt[@
jj:Fg Xj
(8yPo!})5M[ ش]wʼnQd!GyFRiKd!8h\7γSD`a[qiY+Gqn?!090
vo0
*H
�01
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.300
030801172929Z
040731172929Z0T10
UEggert1
0
U*Lars10U
Lars Eggert1
0 *H
larse@isi.edu0"0
*H
��0
�>ן~H(ԢGV׆־25B03ݰת^RIH
�=%J
kA^R)y�H80P ~qrU|c~\;ҋ^哪
!֍
&d@Cd"O"f$FrGe|r<z"%h+Z`3<}̘}9ʮcnb6RX ٫e~XgK7,ìEYU?�V0T0*+e!0 �00L2uMyffBNUbNJJcdZ2s0U
0
larse@isi.edu0
U
0�0
*H
��5Kkt[@
jj:Fg Xj
(8yPo!})5M[ ش]wʼnQd!GyFRiKd!8h\7γSD`a[qiY+Gqn?!10001
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.30
vo0 +�0 *H
1
*H
0
*H
1
031107151530Z0# *H
1J<eLao"0R *H
1E0C0
*H
0*H
�0
*H
@0+0
*H
(0 +71001
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.30
vo0
*H
101
0 UZA10U
Western Cape10U Cape Town10
U
Thawte1
0U
Certificate Services1(0&U Personal Freemail RSA 2000.8.30
vo0
*H
��Q}!B.0j-:XcޯʖlN1e&ܰf;O%+�LglYx&ύyֲlSwrp?p.�L8GCˀζ/]H Z%rfhm<,jNr
3{;4uRr2:NwxÒKu KJ
$?z*h?,*UK~c� v^*L2?\Z`P
ū<S9������
help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3FABB712.7050905>