Feature #3176

Shorewall MultiISP : force traffic from NethServer to a specific provider

Added by Davide Marini about 6 years ago. Updated almost 5 years ago.

Status:CLOSEDStart date:
Priority:NormalDue date:
Assignee:-% Done:

100%

Category:-
Target version:~FUTURE
Resolution:REJECTED NEEDINFO:No

Description

Until now it is possibile to force specific traffic from LANs to a specific provider using tc prop to set shorewall tcrules file.

It would be use to manage this property also for the traffic originating from the server itself (e.g. nethserver act like a mail server and must send through a specific internet connection) .

Shorewall make it possibile using a sligtlhy different syntax for this type of traffic:

#ACTION         SOURCE          DEST            PROTO   PORT(S) CLIENT USER    TEST
#                                                               PORT(S)
MARK(2):P       <local network> 0.0.0.0/0       tcp     25
Note that traffic from the firewall itself must be handled in a different rule:

#MARK           SOURCE          DEST            PROTO   PORT(S) CLIENT USER    TEST
#                                                               PORT(S)
MARK(2)         $FW             0.0.0.0/0       tcp     25

History

#1 Updated by Giacomo Sanchietti about 6 years ago

  • Description updated (diff)

#2 Updated by Giacomo Sanchietti about 6 years ago

  • Target version set to ~FUTURE

#3 Updated by Giacomo Sanchietti almost 5 years ago

  • Status changed from NEW to CLOSED
  • % Done changed from 0 to 100
  • Resolution set to REJECTED

This feature will not be implemented in NS 6. Probably it should already work on NS 7.

Also available in: Atom PDF