[Firewall] checking on any multiroute plugin additions people may have written

Arno van Amersfoort arnova at rocky.eld.leidenuniv.nl
Wed Feb 29 14:37:50 CET 2012


It probably uses cron to detect any line failures? Would still be nice 
if we could implement this into the multiroute plugin but I don't have 
the time nor the setup to do it at the moment...

a.

On 02/28/2012 02:33 AM, Gustin Johnson wrote:
> I have used Arno's iptables script in addition to a custom built script
> to do load balancing across 3 connections.  I did not use the plugin but
> had a simple bash script that made use of the examples at http://lartc.org
>
> I have not spent any time integrating it or cleaning it up (it is
> something I needed for a week with 2 days notice).  Your welcome to it
> once I dig it out of the machine in question.
>
> On Sun, Feb 26, 2012 at 4:45 PM, Tim Miller Dyck <tim at peaceworks.ca
> <mailto:tim at peaceworks.ca>> wrote:
>
>     Hi,
>
>     I'm going to be using the multiroute plugin for the first time with
>     arno-iptables-firewall 2.0.0.c when we add a second internet
>     connection to one site that has outgrown a single connection.
>
>     The default arno-iptables-firewall multiroute script does
>     load-balancing of connections across both interfaces but mentions
>     limitations around link failover (lack of dead gateway detection in
>     the Linux kernel, though kernel patches exist to add this).
>
>     I'm wondering if anyone has written any additions to the multiroute
>     script that add additional functionality, e.g.
>
>       - allow configuration of which traffic goes over which link (e.g.
>     by source IP, destination IP, or destination port) instead of just
>     load-balancing across both connections
>
>       - add some level of link monitoring that will direct all traffic
>     to the alternative link and flush route tables if one link goes down
>
>     Thanks!
>
>     Tim Miller Dyck
>     Ontario, Canada
>     _______________________________________________
>     Firewall mailing list
>     Firewall at rocky.eld.leidenuniv.nl
>     <mailto:Firewall at rocky.eld.leidenuniv.nl>
>     http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
>     Arno's (Linux IPTABLES Firewall) Homepage:
>     http://rocky.eld.leidenuniv.nl
>
>
>
>
> _______________________________________________
> Firewall mailing list
> Firewall at rocky.eld.leidenuniv.nl
> http://rocky.eld.leidenuniv.nl/mailman/listinfo/firewall
> Arno's (Linux IPTABLES Firewall) Homepage:
> http://rocky.eld.leidenuniv.nl


More information about the Firewall mailing list