[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[debian-users:34085] Re: ゲートウェイ2個でiptables

From: "junichi.k" <junichi@xxxxxxxxxxxx>
Subject: [debian-users:34085] Re: ゲートウェイ2個でiptables
Date: Mon, 12 Aug 2002 10:11:48 +0900
List-help: <mailto:debian-users-ctl@debian.or.jp?body=help>
List-id: debian-users.debian.or.jp
List-owner: <mailto:debian-users-admin@debian.or.jp>
List-post: <mailto:debian-users@debian.or.jp>
List-software: fml [fml 4.0.3 release (20011202/4.0.3)]
List-unsubscribe: <mailto:debian-users-ctl@debian.or.jp?body=unsubscribe>
X-ml-info: If you have a question, send e-mail with the body "help" (without quotes) to the address debian-users-ctl@debian.or.jp; help=<mailto:debian-users-ctl@debian.or.jp?body=help>
X-ml-name: debian-users
X-mlserver: fml [fml 4.0.3 release (20011202/4.0.3)]; post only (only members can post)
X-spam-level:
X-spam-status: No, hits=-1.8 required=10.0 tests=IN_REP_TO,ISO2022JP_CHARSET,FROM_NAME_NO_SPACES,PLING, ISO2022JP_BODY,PORN_12,PORN_10,CASHCASHCASH,US_DOLLARS_2, WEIRD_PORT version=2.31
References: <20020811210103.87DA.JUNICHI@xxxxxxxxxxxx> <20020811211823.1FA6.YNM@xxxxxx>
Message-id: <20020812095127.432F.JUNICHI@xxxxxxxxxxxx>
X-mail-count: 34085
X-mailer: Becky! ver. 2.05.03

加藤です。

> >	/sbin/ip route add 0/0 via $ppp0gw table 100
> >	/sbin/ip rule add from 0/0 table 100 pref 40010

> >	/sbin/ip route add 0/0 via $ppp1gw table 101
> >	/sbin/ip rule add from xxx.xxx.xxx.0/25 table 101 pref 40000
> >	/sbin/ip rule add from $ppp1ip/32 table 101 pref 40001
> >	/sbin/ip rule add from $ppp1gw/32 table 101 pref 40002

確認させてください。
eth1のLAN上からきたパケットは、
> >	/sbin/ip rule add from xxx.xxx.xxx.0/25 table 101 pref 40000
によって、$ppp1gwから出て行く。
ppp1のIPとppp1側のゲートウェイから来たパケットはも$ppp1gwから返す。

> >	/sbin/ip route add 0/0 via $ppp0gw table 100
> >	/sbin/ip rule add from 0/0 table 100 pref 40010
ppp0は、優先度が低いので、ppp1以外のパケットはppp0gwから返す。
こんな感じでしょうか？

ところで

/etc/network/interfaceの

iface eth0 inet static 
	address .....
	netmask .....
	network .....
	boradcast .....
	gateway .....      <---- ここはiproute2の場合は削除すべきですよ
ね。

Follow-Ups:
- [debian-users:34087] Re: ゲートウェイ2個でiptables
  - From: Yuzawa, Takashi.

References:
- [debian-users:34077] Re: $B%2!<%H(B$B%&%'%$(B2$B8D$G(Biptables
  - From: junichi.k
- [debian-users:34078] Re: ゲートウェイ2個でiptables
  - From: Yuzawa, Takashi.

Prev by Date: [debian-users:34084] Re: pdf (dvipdfm with jsclasses, acroread font)
Next by Date: [debian-users:34086] openssl
Previous by thread: [debian-users:34078] Re: ゲートウェイ2個でiptables
Next by thread: [debian-users:34087] Re: ゲートウェイ2個でiptables
Index(es):
- Date
- Thread