On Aug 09 2000, kmself@ix.netcom.com wrote:
> I'm testing a firewall setup on my home system. Principle network
> connection is the internal modem of my desktop. I'm trying to route
> through my firewall box instead.
>
> While I can set up the network and add a default gw through the
> firewall, I don't seem to be able to remove the default entry
> corresponding to the ppp connection from my desktop. "route delete
> default gw <dialup-fqdn>" just hangs.
First of all, did you have a default route set before you
connected to the Internet? If yes, then ppp shouldn't have
added/substituted the default route unless you explicitly said
so in its configuration.
Ok, that being ruled out, I usually don't use names when I'm
messing with my routing needs. If I'm doing something at this
level, I don't use higher level network services and thus, I
just use IP addresses.
> Am I doing the right thing? Is this necessary? Ideally, I'd like
> to have the FW be the primary gateway, but use the second modem
> connection on an ad-hoc basis. I assume I'll need to do some sort
> of serial balancing or juggle with metrics to do this....
Yes, assigning a higher metric to your gateway route through
you PPP link than through your firewall box would do the job,
at least in principle.
> default sji-ca-pm1.icg. 0.0.0.0 UG 0 0 0 ppp0
>
> Hmmm... thought occurs that "sji-ca-pm1.icg." is truncated. Might that
> be a part of the problem?
That being truncated is just a matter of formatting of the
output of route. BTW, again, I usually use the "-n" switch
with route or ip (a better program to deal with routing
matters).
[]s, Roger...
--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
Rogerio Brito - [EMAIL PROTECTED] - http://www.ime.usp.br/~rbrito/
Nectar homepage: http://www.linux.ime.usp.br/~rbrito/nectar/
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
