Page 1 of 1

Routing

Posted: Sun Jun 03, 2007 10:16 pm
by mambotech
Hi Guy's,

I have an MT load balancer and I am trying to route traffic to a destination address via wan1. The reason for this is that when connecting to the website and logging in the connection drops after about 60 secs. I have checked the log on the website and it shows that when logging back in it uses wan2.

I have tried using mangle to mark the connection and then postroute to wan1 but this doesn't work either. Rules below.

chain=prerouting dst-address=212.79.238.154 action=mark-connection new-connection-mark=typo3 passthrough=yes
chain=prerouting src-address=192.168.1.1 action=mark-connection new-connection-mark=typo3 passthrough=yes
chain=postrouting out-interface=WAN1 packet-mark=typo3 action=passthrough



Please can anyone advise.

PS I am also getting the same problem with a VPN connection.


Thanks

Re: Routing

Posted: Mon Jun 04, 2007 1:34 am
by JJCinAZ
A Mangle rule in the postrouting chain will not direct packets at all. Everything in the General, Advanced, and Extra tabs are all properties used to select packets. You can think of these properties as the "IF" part of an if-then statement. Everything in the Action tab is the "THEN" part, or what happens. All you get to do in this case, is Route-Mark the packets. After you route-mark the packets, you can then use Policy Routing rules to select a specific routing table entry(ies) to direct the path of the packets.

Also, you seem to be trying to connection mark the source and destination. You really only need to connection mark based on the destination (because the client will always be opening a connection to the web server, never the other way around). After you have marked the connection, you can mark the packets.

Re: Routing

Posted: Mon Jun 04, 2007 8:16 am
by mambotech
JJCaniAZ,

Thanks for the reply. I understand what you are saying now. Do you have an example of the syntax I require to fix this problem please. I am not to sure of the policy routing rules.


Thanks

Re: Routing

Posted: Mon Jun 04, 2007 8:54 am
by JJCinAZ
Try searching the forums and the Wiki first.

Re: Routing

Posted: Tue Jun 05, 2007 12:57 am
by mambotech
Hi JJCaniAZ,


Thanks for the direction I have it all working now apart from the VPN issue. We are using Sonic wall client to connect to the VPN concentrator. The VPN connection works fine but when trying to use the application digitalk service pack 1 it fails to connect. This has only start to happen since the implementation of the MT ???


Thanks