From: Alexander Volkov <vaa@altlinux.org>
To: "ALT Linux sysadmins' discussion" <sysadmins@lists.altlinux.org>
Subject: Re: [Sysadmins] роутинг
Date: Wed, 21 Jan 2015 16:17:23 +0300
Message-ID: <20150121131723.GC14007@arch.vladregion.ru> (raw)
In-Reply-To: <54BF9B04.3080107@altlinux.ru>
On 2015-01-21 15:26:44 +0300, Anton Gorlov wrote:
AG> 21.01.2015 15:20, Anton Gorlov пишет:
AG> >> Если я правильно понял, то надо отправлять ответный пакет в тот же канал,
AG> >> > по которому пришел запрос?
AG> >> > Тогда, по идее, без разницы, откуда он пришел - надо промаркировать
AG> >> > возможные варианты и маршрутизировать по нужным правилам...
AG> > Да всё верно.
AG> > Но вот если маркировать уже ответный пакет..то я же не знаю откуда он
AG> > пришёл.. :(
AG> Собственно в лоб
AG> iptables -A PREROUTING -i vlan10 -t mangle -j MARK --set-mark 1
AG> iptables -A PREROUTING -i vlan11 -t mangle -j MARK --set-mark 2
AG> ip rule add fwmark 1 table vl10
AG> ip rule add fwmark 2 table vl11
AG> ip route show table vl10
AG> 10.22.2.193 via 10.22.2.68 dev vlan10 src 10.22.2.67
AG> ip route show table vl11
AG> 10.22.2.193 via 10.22.2.130 dev vlan11 src 10.22.2.12
AG> не помогло
а не забылось?
$IPTABLES -t mangle -A PREROUTING -m state --state ESTABLISHED,RELATED -j
CONNMARK --restore-mark
--
Regards, Alexander
next prev parent reply other threads:[~2015-01-21 13:17 UTC|newest]
Thread overview: 26+ messages / expand[flat|nested] mbox.gz Atom feed top
2015-01-20 23:21 Anton Gorlov
2015-01-21 8:38 ` Alexander Volkov
2015-01-21 10:52 ` Anton Gorlov
2015-01-21 12:06 ` Alexander Volkov
2015-01-21 12:20 ` Anton Gorlov
2015-01-21 12:26 ` Anton Gorlov
2015-01-21 13:17 ` Alexander Volkov [this message]
2015-01-21 13:24 ` Anton Gorlov
2015-01-21 14:06 ` Anton Farygin
2015-01-21 14:28 ` Anton Gorlov
2015-01-21 14:41 ` Anton Farygin
2015-01-21 15:35 ` Anton Gorlov
2015-01-21 17:41 ` Anton Farygin
2015-01-22 7:42 ` Sergey
2015-01-22 8:40 ` Anton Gorlov
2015-01-22 14:10 ` Sergey
2015-01-22 14:34 ` alexei
2015-01-22 14:50 ` Anton Farygin
2015-01-22 17:55 ` Anton Gorlov
2015-01-23 2:54 ` alexei
2015-01-23 9:12 ` Anton Gorlov
2015-01-23 11:15 ` Anton Farygin
2015-01-23 16:26 ` alexei
2015-01-23 19:24 ` Anton Farygin
2015-01-27 10:59 ` Alexey Shabalin
2015-01-27 5:08 ` Eugene Prokopiev
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to=20150121131723.GC14007@arch.vladregion.ru \
--to=vaa@altlinux.org \
--cc=sysadmins@lists.altlinux.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
ALT Linux sysadmins discussion
This inbox may be cloned and mirrored by anyone:
git clone --mirror http://lore.altlinux.org/sysadmins/0 sysadmins/git/0.git
# If you have public-inbox 1.1+ installed, you may
# initialize and index your mirror using the following commands:
public-inbox-init -V2 sysadmins sysadmins/ http://lore.altlinux.org/sysadmins \
sysadmins@lists.altlinux.org sysadmins@lists.altlinux.ru sysadmins@lists.altlinux.com
public-inbox-index sysadmins
Example config snippet for mirrors.
Newsgroup available over NNTP:
nntp://lore.altlinux.org/org.altlinux.lists.sysadmins
AGPL code for this site: git clone https://public-inbox.org/public-inbox.git