Charles:
E-mail's a very dangerous medium. I didn't mean to slight you at
all by calling cron technique a "kludge".
Indeed, I'm kind of goofy for not thinking of it myself, so doubly and
triply thanks for the idea!
Another nice thing is that I think the cron job might be within my
meager range of abilities. So that's good.
All I meant by prior e-mail is that the cron job really is a kludge
because while it will likely work it has nothing to do with routing or
the internal behavior of ipchains, neither of which I am a virtuoso at,
I might add.
Also, I generally have affection for kludges of all sorts.
Please forgive my inelegantness?
I had hoped the learned routing and ipchains gurus would weigh in
with their subtle insights.
//jrkeene
On 9 Mar 00, at 15:21, Charles Boening <[EMAIL PROTECTED]> wrote:
From: Charles Boening <[EMAIL PROTECTED]>
To: "'[EMAIL PROTECTED]'" <[EMAIL PROTECTED]>
Subject: RE: IP Masquerading for Failsafe Internet Service?
Date sent: Thu, 9 Mar 2000 15:21:54 -0800
> Sorry ... that was the best I could do ...
>
> I was thinking you could probably do a traceroute and see what IP it
> hits as it's first hop ...
>
> Charlie
>
>
>
> -----Original Message-----
> From: Jerry Keene [mailto:[EMAIL PROTECTED]]
> Sent: Thursday, March 09, 2000 2:53 PM
> To: Charles Boening
> Cc: [EMAIL PROTECTED]
> Subject: RE: IP Masquerading for Failsafe Internet Service?
>
>
> On 8 Mar 00, at 16:44, Charles Boening <[EMAIL PROTECTED]> wrote:
>
> > Could set a cron job that checks to see which interface has access
> > and adjust accordingly.
> >
> > Charlie
> >
> Charlie:
>
> Thanks for the reply; cron job sounds like it would work here, albeit
> a bit of a kludge.
>
> Any other ideas?
> >
> >
> > -----Original Message-----
> > From: Jerry Keene [mailto:[EMAIL PROTECTED]]
> > Subject: IP Masquerading for Failsafe Internet Service?
> >
> > We recently added another ISP, so our system has two potential
> > routes to the internet. I've set up Routed and have configured
> > /etc/gateways using
> >
> > net 0.0.0.0 gateway xx.xx.xx.1 metric 1 passive
> > net 0.0.0.0 gateway xx.xx.xx.1 metric 2 passive
> >
> > During testing both default routes to the internet work properly
> > from the server; that is, if I pull the plug on one ISP pipe, I can
> > reach the internet through the other and vice versa.
> >
> > However IP masquerading using ipchains doesn't work if the default
> > gateway for masquerading goes down. When that gateway is taken down
> > the internet is no longer reachable from workstations.
> >
> > I've configured /etc/rc.d/rc.ipchains is configured using
> >
> > ipchains -b -A forward -j MASQ -p all -s 10.0.0.0/8 -d 0.0.0.0/0
> > ipchains -A forward -j ACCEPT -p all -s xx.xx.xx.64/27 -d 0.0.0.0/0
> >
> > which works until plug is pulled on one of our two default internet
> > gateways.
> >
> > Is there an automated way to have ip masquerading change to a
> > new default internet gateway if one goes down?
> >
>
>
>
> Jerry R. Keene
> Senior Systems Analyst
> SCS ENGINEERS
> Partners With EPA Through The Landfill Methane Outreach Program
>
> Phone: 703.471.6150
> Fax: 703.471.6676
> http://www.scsengineers.com
Jerry R. Keene
Senior Systems Analyst
SCS ENGINEERS
Partners With EPA Through The Landfill Methane Outreach Program
Phone: 703.471.6150
Fax: 703.471.6676
http://www.scsengineers.com
--
To unsubscribe: mail [EMAIL PROTECTED] with "unsubscribe"
as the Subject.
