Hello.
Recently I tried to combine multiple ISP using a layer 2 switch into one
port connected to a debian wheezy router.
I set up in interfaces:
auto eth0
iface eth0 inet static
address local_lan_ip
netmask mask
auto eth1.2
iface eth1.2 inet static
address isp1
netmask mask
auto eth1.4
iface eth2.4 inet static
address isp2
netmask mask
VLAN ID 2 is for tagging to ISP1
VLAN ID 4 is for tagging to ISP2
Also for load balancing I do:
ip route replace default scope global nexthop via $eth1.2_gateway dev
$eth1.2_eth weight 100 nexthop via $eth2.4_gateway dev $eth2.4_eth
weight 100
In iptables I do:
iptables -t nat -A POSTROUTING -o eth1.2 -j MASQUERADE
iptables -t nat -A POSTROUTING -o eth1.4 -j MASQUERADE
iptables -A FORWARD -j ACCEPT
Now when i ping from the linux router - it works.
When I ping from some workstation behind router - it works.
When I open some ftp from workstation - it works.
But, when I try to open a web page from workstation - it does not work.
I even tried on linux router:
wget google.com
and after resolving to ip it waited long long time to download page and
didn't received any packet.
What is wrong with http/htpps ? Why icmp works, ftp works, but
http/https is not working?
The same configuration of iptables, ip route but moving to eth1 and eth2
- physical interfaces for each ISP - all works as it should be.
Thank you.
--
To UNSUBSCRIBE, email to debian-user-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive: https://lists.debian.org/550deed8.2060...@gmail.com
