Re: [LARTC] Split access, load balancing AND forwarding: HOW?

LARTC

Re: [LARTC] Split access, load balancing AND forwarding: HOW?

To:	<lartc@mailman.ds9a.nl>
Subject:	Re: [LARTC] Split access, load balancing AND forwarding: HOW?
From:	"Ming-Ching Tiew" <mingching.tiew@redtone.com>
Date:	Thu, 22 Feb 2007 12:57:10 +0800
Delivered-to:	sp-com-lists@consult.net
Delivered-to:	lartc-list@securepoint.com
Delivered-to:	lartc@outpost.ds9a.nl
List-archive:	<http://mailman.ds9a.nl/pipermail/lartc>
List-help:	<mailto:lartc-request@mailman.ds9a.nl?subject=help>
List-id:	"Mailinglist of the Linux Advanced Routing & Traffic Control project" <lartc.mailman.ds9a.nl>
List-post:	<mailto:lartc@mailman.ds9a.nl>
List-subscribe:	<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=subscribe>
List-unsubscribe:	<http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc>, <mailto:lartc-request@mailman.ds9a.nl?subject=unsubscribe>
Sender:	lartc-bounces@mailman.ds9a.nl

From: "Ming-Ching Tiew" <mingching.tiew@redtone.com>
> 
> I would say it would be better to re-order the the iptables command :-
> 
> #restore mark before ROUTING decision
> iptables -t mangle -A PREROUTING -j CONNMARK --restore-mark
> #by-pass rules if it is already MARKed
> iptables -t mangle -A POSTROUTING -m mark  --mark ! 0 -j ACCEPT 
> #1st packets(from a connection) will arrive here 
> iptables -t mangle -A POSTROUTING -o eth1 -j MARK --set-mark 0x1
> iptables -t mangle -A POSTROUTING -o eth2 -j MARK --set-mark 0x2
> iptables -t mangle -A POSTROUTING -j CONNMARK --save-mark
> 
> ie restore-mark is moved to the top.
> 

On more careful reading, I am wondering why it is using POSTROUTING ? 

Shouldn't it all be PREROUTING ?

Cheers.



_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc

[More with this subject...]

<Prev in Thread]	Current Thread	[Next in Thread>
[LARTC] Split access, load balancing AND forwarding: HOW?, Andrew McGill Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Luciano Ruete Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Ming-Ching Tiew Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Luciano Ruete Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Roy Orpiano [LARTC] Here's the code: XML routing, Amin Azez Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Ming-Ching Tiew <= Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Luciano Ruete Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Ming-Ching Tiew Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Alex Samad Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Ming-Ching Tiew

Previous by Date:	Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Ming-Ching Tiew
Next by Date:	Re: [LARTC] Re: "dst cache overflow" messages and crash, Ivan Vladimirov
Previous by Thread:	[LARTC] Here's the code: XML routing, Amin Azez
Next by Thread:	Re: [LARTC] Split access, load balancing AND forwarding: HOW?, Luciano Ruete
Indexes:	[Date] [Thread] [Top] [All Lists]