| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15
Comments:
<0> k
<1> everyone hats dd
<0> and everyone hates g
<2> goodevening gents, if i have multiple nic on my server with 2 ips each on same subnet, is there any way to keep traffic on the 2 nics seperate ? :-)
<3> such as?
<2> well what ive researched that will suit my needs is to create ip policy routing , but im not quite sure im in the right direction
<4> Is there a way to get the 2.6 kernel to use the drivers from the alsa-driver package?
<3> you have to bond them, or route them differently
<3> what policies do you want to route against?
<2> well this is my only options and since they are currently on same subnet
<5> why do you need two nics on the same subnet
<2> all the traffic is going out to eth0
<2> well its my only options
<2> :S
<5> you setting up ipmp?
<2> so im thinkin policy based routing or some load balacing
<2> ipmp ? :d
<4> ook
<5> nevermind
<5> IP Multipathing
<2> oh
<2> well im kinda in the dark on this one so all ideas is appricated, just need a direction to what i need ;d
<5> allows failover of nic cards on the same subnet
<5> what are you trying to do
<2> well this is not about failovers, but i need both nics actice
<3> for what?
<2> well i got eth0 and eth1 with each their connection
<2> just trying to get my server to use both connection
<2> to the internet
<2> so they spread they load on the 2 connections
<3> then they arnt on the same subnet?
<2> they still are :)
<5> whats the point I believe is the question
<3> are they public or not public?
<5> what are you trying to accomplish
<2> both public
<3> aight
<3> lemme upload you my iptables scrim
<2> SufferAll avoid all the traffic realted to eth1 goes trough eth0
<3> ftp hates me today
<2> hehe i dont need anything complete solution mostly just an approach
<2> and if its even possible
<3> some of this is outdated
<3> here is a def of the files
<2> oh
<3> etc.iproute2.rt_tables is /etc/iproute2/rt_tables
<3> this relates to route.sh
<2> ye
<2> that far i got it ;d
<3> rt_tables gives a name for the tables
<3> route.sh establishes table 1 and table 2
<6> is it possible to use remote desktop between a windows and linux machine?
<3> at the bottom it generates 'marks' for each table, in this case, table 1 is 10 and table 2 is 6
<6> I've tried but didn't work.
<3> Zaitzev emerge rdesktop
<3> linux rdp client
<6> I wanna control my gentoo box from the win-desktop
<3> braindog once you have those tables established, you can continue to setup the iptables script
<7> ssh then or vnc or remote X
<6> I'm ssh'ing, but I want the desktop ;)
<2> warflyr, ye i get that much but , would this work when they are on both subnet, and they in the basics end up using the same default gateway?
<3> braindog make sure you dont ahve any duplicate routes within 'ip route ls', also make sure you have iproute2, emerge iproute2
<3> hmmm they have the same default gateway...
<2> warflyr tahts exactly my problem, sine they have same default gw, traffic from eth1 will p*** trough eth0 instead of eth1
<3> braindog, that is what route.sh does
<2> oh
<2> lookie
<3> traffic that comes in on eth0 will go out eth0, traffic on eth1 will go out on eth1
<2> i found similiar on lartc.org
<2> but not really sure if it was the stuff i needed
<3> i got the code from route.sh off some site
<3> ipt_airwave.sh is what took me a long time
<2> thats for yer wlan right?
<3> airwave is just my inet provider, wireless -- but not 802.11
<2> oh :)
<2> but hms :p need to do some research on this i think
<2> since im kinda far from my server
<2> so if it dies it would be pain in the ***
<3> locally i have ipt_airwave.sh and ipt_mho.sh, they have seperate mark values but practicly the same thing
<3> before you run any firewall script, have a second SSH open
<2> i got 4 ssh termin open to it
<2> froom my laptop
<2> :)
<3> check that link again
<3> grab flush.sh, chmod +x it
<3> in one of your terminals, do: screen -a -S aname, then in the new shell: sleep 15 && ./flush.sh
<3> then in a different ssh window, run the firewall script
<2> oh
<3> anyway, ipt_airwave does this:
<2> i forgot to get firewall script
<3> at the top it gives 2 sections to specify port-forwards, FW_1 will forward the port from PRI_IFACE and FW_2 will forward from SEC_IFACE
<3> the ports are the following cards, _TCP and _UDP, that should be straight forward
<2> your airwave.sh
<2> i shouldent need
<2> right?
<3> no, i use that to switch primary gateways around
<2> i figured
<2> ;d
<2> good thing i dident run that
<2> heh
<3> the (PRI|SEC)_(UDP|TCP)_ALLOW are the ports opened to the server
<2> oh damn
<2> that script is big
<3> the (PRI|SEC)_(UDP|TCP)_FW are used to forward ports to different ips than the one in INT_(1|2)_IP, it goes in the format: 1000:1000>XXX.XXX.XXX.XXX
<2> can you forward all ports
<2> to each inf?
<3> well, _ALLOW simple opens the port to the server
<3> a firewall script is useless if youre not blocking any ports
<2> hehe well true
<3> the DPORT_MAP_(TCP|UDP) is the routing policy
<3> lol
<3> DPORT_MATCH is the fwmark of the SEC_IP table
<8> i managed to debug a setup with 4 nics for almost a day before remembering that one :/
<9> woot free 2x800mhz box :D
<2> well warflyr, it would be nice to get it working in a simple manner first
<2> :d
<2> and then tighten down the allowed ports
<2> hehe
<3> what is listed in DPORT_MAP_(TCP|UDP) and DPROTOCOL_MAP are the ports that from local traffic attempted to connect to a different host of port X, will be routed through SEC_IFACE
<2> **** hehe need to get a overview of that script
<2> :p
<3> so basicaly how that script is configured atm is that if im access HTTP,IMAP,POP3,SMTP,IRC im using my second ISP
<3> otherwise im using my first isp
<2> ah well i dont wanna lock the ports based on the interface
<2> that i dont need
<3> is there a local lan behind the box?
<3> that youre trying to NAT
<2> nop
<2> no local lan
<3> hmmm
<3> each IP/iface has its own allocated bandwidth, or were you given a /29 on a dedicated network?
<2> ye
<3> which?
<2> last option
<2> hehe
<3> ohh
<3> you dont need to do policy routing
<2> then what i need? .. eth0 working fine as i want
<2> but i cant get my damn eth1 up running
<2> without all traffic from eth1 running trough the eth0
<3> inbound or outbound traffic?
<2> mostly inbound
<2> but i would like it to work both ways
<2> :d
<2> so all inbound to eth1 going out of eth1 again
<3> aight.. so there is no reason to route outbound traffic out a second ip
<3> your problem of that is because youre using 2 IFACE, you only wanna use 1 and alias the other ips
<2> ye well each if got 2 ips
<2> and those 2x2 ips is all same subnet
Return to
#gentoo
or
Go to some related
logs:
genoside afrika
#hardware
KUTTYGIRL
#gentoo
viewxpkey rockxp
stjhnf0121w
#directx
#windows
#heroin
#flash
|
|