Re: multihomed linux box - dual t1

To: Debian User <debian-user@lists.debian.org>
Subject: Re: multihomed linux box - dual t1
From: Phil Brutsche <pbrutsch@tux.creighton.edu>
Date: Mon, 9 Jul 2001 23:47:43 -0500 (CDT)
Message-id: <[🔎] Pine.LNX.4.33.0107092328060.26702-100000@tux.creighton.edu>
In-reply-to: <[🔎] 2199.216.39.174.24.994738172.squirrel@webmail.aphroland.org>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

A long time ago, in a galaxy far, far way, someone said...

> how does that work though? the rest of the world has to know how to
> route to you..without that information i cant imagine a thing in the
> world you can do on a server to advertise you :)

It works very easily.  Linux policy routing works on the basis of multiple
routing tables; when you make the connection to 10.0.0.2, and the packet
makes the return trip, the kernel routing code looks and says "ooh!
packets coming from 10.0.0.2 goes through routing table number 1", and on
it goes through routing table number 1.

The whole time the world *does* know how to route to you.  All policy
routing does is decide which gateway the packet is going to go out through
based on rules defined by the network administrator.  In the case of my
example, the packets returning from 10.0.0.2 *always* use go out through
10.0.0.1 based on the fact that they're returning from 10.0.0.2.

Policy routing can take some getting used to - but, like anything else, is
very simple once you've gotten the hang of it.

> i can't believe this is such a difficult routing thing for the kernel
> to do..the metrics should work but they don't.  from the docs i see that
> the kernel ignores it.

That seems to be the case - I'll have to try it out tomorrow as well.

> (it says 2.0.x kernels used it)

I don't think the 2.0.x kernels had the rp_filter facility.

> maybe if i switched to a 2.0 kernel it would work ;)

Maybe, just maybe...

> ill try that networking option you mentioned though. i wont be able to
> unplug that other t1 till i get back to the office tomorrow though.

- -- 
- ----------------------------------------------------------------------
Phil Brutsche				    pbrutsch@tux.creighton.edu

GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D  7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (GNU/Linux)
Comment: Made with pgp4pine

iD8DBQE7SokD/ZTSZFDeHPwRAmvBAJ9liz5+v+0gzY/ctHi/vE9tetOGxgCfT1sN
MCkdcT9V6MuGR7HqmKje6kw=
=cRTf
-----END PGP SIGNATURE-----

Reply to:

References:
- Re: multihomed linux box - dual t1
  - From: aphro@portal.aphroland.org

Prev by Date: Re: Scroll Wheel
Next by Date: Re: Docbook, MathML and Debian
Previous by thread: Re: multihomed linux box - dual t1
Next by thread: Re: multihomed linux box - dual t1
Index(es):
- Date
- Thread