Re: [Shorewall-users] smtp etc not going through in multiisp setup

SourceForge Headquarters 225 Broadway Suite 1600 San Diego, CA 92101 +1 (858) 454-5900

Kenneth Gonsalves wrote:
> hi,
>
> forgot to put a subject, so am resending
>
> hi,
>
> I have been trying to set up shorewall for 2 ISPs and nothing fancy
> but am facing the problem that smtp,pop,ssh,ping and irc dont go
> through when I enable the masq. I am running Mandriva 2007. My setup is:
>
> eth0 192.168.2.201 - local lan
> eth2 202.x.x.3  gateway 202.x.x.1 isp1
> eth3 222.x.x.3 gateway 222.x.x.1 isp2
>
> my rules.drakx file:
>
> ACCEPT  net     fw      udp     110,25,22       -
> ACCEPT  net     fw      tcp     22,6670,110,25,22       -
> REDIRECT        loc     3128    tcp     www     -
>
> my providers file:
>
> isp1        2       2    main      eth2    202.x.x.1
> balance,track  eth0
> isp2  1        1    main      eth3    202.x.x.1  balance,track  eth0
>
> my masq file:
>
> eth2                   202.x.x.3  222.x.x.3
> eth3                   222.x.x.3    202.x.x.3
>   
Try:
eth2   222.x.x.3   202.x.x.3
eth3   202.x.x.3   222.x.x.3

I think you have it reversed
Regards.
Harry.
> If i comment out the entries in the masq file, everything works, but
> all traffic goes through eth2 only. If i enable the masq file, http
> works, load is balanced, but smtp,pop,ssh,ping and irc dont go
> through. Any clues?
>
>
>