Shorewall MultiISP : force traffic from NethServer to a specific provider
Until now it is possibile to force specific traffic from LANs to a specific provider using tc prop to set shorewall tcrules file.
It would be use to manage this property also for the traffic originating from the server itself (e.g. nethserver act like a mail server and must send through a specific internet connection) .
Shorewall make it possibile using a sligtlhy different syntax for this type of traffic:
#ACTION SOURCE DEST PROTO PORT(S) CLIENT USER TEST # PORT(S) MARK(2):P <local network> 0.0.0.0/0 tcp 25 Note that traffic from the firewall itself must be handled in a different rule: #MARK SOURCE DEST PROTO PORT(S) CLIENT USER TEST # PORT(S) MARK(2) $FW 0.0.0.0/0 tcp 25