doc:appunti:net:source_routing
Differences
This shows you the differences between two versions of the page.
Both sides previous revisionPrevious revisionNext revision | Previous revision | ||
doc:appunti:net:source_routing [2015/03/13 11:03] – [Firewall dual homed e source routing con Shorewall] niccolo | doc:appunti:net:source_routing [2021/10/13 18:03] (current) – [Firewall dual homed e source routing con Shorewall] niccolo | ||
---|---|---|---|
Line 65: | Line 65: | ||
</ | </ | ||
+ | Attenzione alla **priorità delle regole** (rules)! Il numero più basso ha priorità maggiore, se non viene indicato il parametro **'' | ||
====== Source IP con ip route ====== | ====== Source IP con ip route ====== | ||
Line 144: | Line 145: | ||
====== Firewall dual homed e source routing con Shorewall ====== | ====== Firewall dual homed e source routing con Shorewall ====== | ||
- | **Esempio**: | + | **Esempio**: |
Queste le accortezze da utilizzare: | Queste le accortezze da utilizzare: | ||
* In **''/ | * In **''/ | ||
- | * In **''/ | + | * In **''/ |
- | * Per lo stesso motivo di cui sopra **non** si deve mettere | + | * In **''/ |
+ | | ||
**''/ | **''/ | ||
Line 179: | Line 181: | ||
</ | </ | ||
- | **''/ | + | **''/ |
+ | |||
+ | < | ||
+ | SNAT(217.58.174.226) | ||
+ | SNAT(94.94.64.138) | ||
+ | </ | ||
+ | |||
+ | **''/ | ||
< | < | ||
Line 185: | Line 194: | ||
eth2 10.22.20.0/ | eth2 10.22.20.0/ | ||
</ | </ | ||
- | |||
**''/ | **''/ | ||
< | < | ||
- | # Packets source-routed via eth2 must use eth2 source address. | + | # Packets source-routed via eth2 must use eth2 source address, |
- | # Otherwise | + | # otherwise |
- | iptables -t nat -A POSTROUTING -o eth2 -j SNAT --to-source | + | iptables -t nat -A POSTROUTING -o eth2 -j SNAT --to-source |
# For connections originating from eth1 LAN. | # For connections originating from eth1 LAN. |
doc/appunti/net/source_routing.1426241001.txt.gz · Last modified: 2015/03/13 11:03 by niccolo