LARTC
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

[LARTC] mark and route traffic in a bridge

from [Roberto Pereyra] [Permanent Link][Original]
To: lartc@mailman.ds9a.nl
Subject: [LARTC] mark and route traffic in a bridge
From: "Roberto Pereyra" <pereyra.roberto@gmail.com>
Date: Sun, 21 Jan 2007 17:06:55 -0300
Delivered-to: sp-com-lists@consult.net
Delivered-to: lartc-list@securepoint.com
Delivered-to: lartc@outpost.ds9a.nl
Domainkey-signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=VQcshsOS1L0RIUyADsh12YEBO6YnK243OS+w0AUlW7AeXmki8sgfWtQUjivnQRcg+Sildo3sTtu5RBioIqWj+JorEk99UhyMWIQZBtZch5wrPMCWYFllNioeKAFUOLfITPEL25PC80JteUEy77dBsKTMZgCIxVzBl9DBCv6NReg=
List-archive: <http://mailman.ds9a.nl/pipermail/lartc>
List-help: <mailto:lartc-request@mailman.ds9a.nl?subject=help>
List-id: "Mailinglist of the Linux Advanced Routing &amp; Traffic Control project" <lartc.mailman.ds9a.nl>
List-post: <mailto:lartc@mailman.ds9a.nl>
List-subscribe: <http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=subscribe>
List-unsubscribe: <http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=unsubscribe>
Sender: lartc-bounces@mailman.ds9a.nl 
Hi all !!


I would to like to mark and route some kind of traffic (ie: outbound
www, now by simplicity)



---inet1--------eth0------------|                 |
                                             |    linux      |
--eth1-------   clientes
---inet2(90.0.0.1)--------eth2-|                 |


I have eth0 and eth1 bridged (eth2 is not bridged).

I would to route www outbound clients  traffic through eth2.

This scheme works ?

I wrote this scripts:

a) add this line to /etc/iproute2/rt_tables

   200 web

b) I assign ip to eth2:

/sbin/ifconfig eth2 90.0.0.2

c) Mark outbound www packets  from clients:

/usr/local/sbin/iptables -A PREROUTING -t mangle -m physdev
--physdev-in eth1 -p tcp --dport 80 -j MARK --set-mark 2

d) I routing this marked packets

/sbin/ip rule add fwmark 2 table web

/sbin/ip route add default via 90.0.0.1 dev eth2 table web

e) Now I run iptraf listen eth2  but through eth2 is nothing of traffic.

What's a doing wrong ? How I can do it with a  bridge ?

Thanks in advance for any hint and excuse my english.

roberto



--
Ing. Roberto Pereyra
ContenidosOnline
Looking for Linux Virtual Private Servers ? Click here:
http://www.spry.com/hosting-affiliate/scripts/t.php?a_aid=426&a_bid=56
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
  • [LARTC] mark and route traffic in a bridge, Roberto Pereyra <=
Previous by Date:  Re: [LARTC] HTB? (NEWBIE), Bartek Krawczyk
Next by Date:  [LARTC] Advice on TC/Iptables Configurations, Dan
Previous by Thread:  [LARTC] HTB? (NEWBIE), Simone84bo
Next by Thread:  [LARTC] Advice on TC/Iptables Configurations, Dan
Indexes:  [Date] [Thread] [Top] [All Lists]