Server Fault Stack Exchange
Server Fault Stack Exchange

Questions tagged [policy-routing]

Policy-Based-Routing is a more complex form of the ordinary routing table

With Policy-Based-Routing you can formulate specific rules to get your packets routed different than the normal main routing table.

You can define rules upon source or destination address as well as even more complex situations using fwmarks and iptable's mangle:PREROUTING chain which empowers you with all possibilities that iptables grants you.

Policy-Based-Routing can also be used to merge Multi-Link PPP uplinks and/or Load-Balancing as well as traffic shaping.

92 questions
0
votes
1 answer

Cisco IOS policy route for router originated VPN traffic

We have a Cisco IOS router with two DSL connections. One of them is intended for general traffic (ADSL), the other for VPN links (BDSL) and various other traffic. So the default route is the ADSL link, and we have a combination of static routes for…
Paul
  • 1,228
  • 12
  • 24
0
votes
1 answer

Policy routing script for linux

I am looking for some policy routing script for linux that isn't a part of a firewall, there are tools like shorewall and others but I prefer something more simple. I only need a script that can set a per-service preference on one of my two upstream…
aseques
  • 688
  • 4
  • 12
  • 26
0
votes
3 answers

Ubuntu server (VM) with two interfaces. Can only pass traffic on one or the other interface at a time

Let me start with a crude network diagram. Internal Layer 3 switch (Multiple VLANS, including 172.16.220.0 network) --> Internal network (172.16.220.0/24) --> eth1(172.16.220.100)-Ubuntu 10.04 VM-eth0(192.168.1.100) --> NATed network…
fourleggedfish
  • 110
  • 2
  • 9
0
votes
1 answer

Trying to figure out ssl over a reverse proxy with multiple backends/infrastructure

I'm having a hard time wrapping my mind around ssl with multiple backends. I might just need advice on infrastructure in general. Here is my scenario/question: I have three servers: main website hosting control panel development machine Reverse…
Dustin Kingen
  • 113
  • 1
  • 1
  • 7
0
votes
1 answer

How to route a reply packet to the device it coming from?

I have an ipip tunnel, I want all the reply packets coming from ipip device also going through ipip. I have tried the following iptables rules sysctl -w net.ipv4.ip_forward=1 ip rule add fwmark 1 lookup 100 ip route add default dev ipip0 table…
Hoping White
  • 1
  • 1
0
votes
0 answers

Free BSD IP forwarding for LVS NAT mode

I am testing LVS NAT mode with centos as Keepalived node and FreeBSD as real server. This question is already answered in context of Linux. Now the question is how to make an L3 host as a default gateway for outgoing traffic on specific port (Policy…
chellathurai
  • 13
  • 2
0
votes
0 answers

Linux Gateway Policy Routing and TCP MSS Issue(maybe)?

I have an Ubuntu 20 machine as an internet gateway with two WANs ens160 and ens192. I switch the default route on the gateway like ip r re 0/0 dev160(or ens192) and the clients on the LAN access the web without any problem. But if I want to let a…
timy
  • 659
  • 1
  • 7
  • 14
0
votes
1 answer

How to deal with DNS requests when using multiple OpenVPN connection and policy based route?

I have 2 subnets in my local network (192.168.4.0/24, 192.168.5.0/24), but only 1 gateway server (192.168.4.223) which has 2 OpenVPN connections (10.100.2.6/24, 10.100.3.6/24). The topology is like: enter image description here I want computers in…
SATMOS
  • 1
0
votes
0 answers

Policy Based Routing, why do I need another default route?

Using this tutorial I set up a server which receives a tagged VLAN trunk. I distribute the individual VLANs to various bridges for different purposes e.g., virtual machines. The following configures the bridge, with the interface of the server…
Lars Hanke
  • 281
  • 2
  • 15
0
votes
0 answers

Why is my policy-routing setup not working?

I have an EC2 machine running Ubuntu 20.04 with 2 ethernet interfaces. They are both connected to the same subnet and both are reachable from the outside. I have created 2 custom route tables, one for each interface and both just containing the…
MoWo
  • 306
  • 9
0
votes
0 answers

iproute2 policy route same subnet wrong ttl value

I have a Linux PC has two NICs: 1st name is ens192, ip is 192.168.0.2/24 gw is 192.168.0.1 also default route, major NIC 2nd name is ens256, ip is 192.168.1.50/24 gw is 192.168.1.1, and with follow policy routing commands: ip route add default via…
Benjamin Qin
  • 1
0
votes
0 answers

EdgeRouter Policy Based Routing not working for second LAN

I have an EdgeRouter ER-8 with the following setup: 3 WANs (eth0 is ISP1, eth1 is ISP2, eth2 is a wireless link to another campus with its own ISP, and it is used to access the remote LAN and as a third and failover-only uplink); and 2 local LANs…
ahpoblete
  • 241
  • 1
  • 3
0
votes
1 answer

Diagnosing a Linux routing issue: multiple external IPs and several internal subnets with multiple routing tables

This is my first post on stack exchange. First, I'd like to thank this community for over my computer engineering journey I have learned many things here. :) With this post I am mainly looking for direction of how to proceed in diagnosing and fixing…
Wafflemann
  • 1
  • 1
0
votes
0 answers

VPN client IP masking

at our company we are facing a particular routing problem, for which I have found many related questions and answers for parts, but not for the whole. This is the scenario: our office has a fixed IP to the outside world this IP is registered to be…
Bart Van Loon
  • 1
  • 2
-1
votes
1 answer

Iptables round-robin through multiple virtual network interfaces

I have a server with two main network interfaces and 5 virtual interfaces like this. eth0 - 192.168.1.1 eth1 - 192.168.3.1 eth1:2 192.168.3.3 eth1:3 192.168.3.4 eth1:4 192.168.3.5 eth1:5 192.168.3.6 eth1:6 192.168.3.7 etho is my internal facing…
rafalefighter
  • 101
  • 6
1 2 3 4 5
6
7