Re: Advanced routing option
- From: Tom Judge <tom@xxxxxxxxxxxx>
- Date: Wed, 24 Oct 2007 11:56:06 +0100
tonix (Antonio Nati) wrote:
Tom Judge ha scritto:tonix (Antonio Nati) wrote:I feel it is more a routing feature than a fw feature. I don't see extending routing tables (and relative routing checking) so complicated.I'm using FreeBSD and Monowall in the most of my servers.
One limit I'm facing on both is the lack of an advanced routing feature.
Would be too complicated to modify "route" sources (and probably kernel tables) implementing a FROM parameter in ADD command?
route add 0.0.0.0/0 210.10.10.1
route add FROM 200.1.1.0/24 0.0.0.0/0 210.10.10.10
route add FROM 200.1.2.0/24 0.0.0.0/0 210.10.11.11
A FROM option would improve a lot routing capabilities and handling of multiple WAN connections.
Any comment?
Tonino
If you wish to do this type of policy routing you need to use one of the firewalls as it can't be done in the routing table. PF can do this easily with its route-to option.
Tonino
It is not that it is not complicated. It is that it is _NOT_ _POSSIBLE_ to do this with the FreeBSD routing sub system. You _MUST_ do this with a firewall on FreeBSD.
Tom
_______________________________________________
freebsd-isp@xxxxxxxxxxx mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-isp
To unsubscribe, send any mail to "freebsd-isp-unsubscribe@xxxxxxxxxxx"
- Follow-Ups:
- Re: Advanced routing option
- From: tonix (Antonio Nati)
- Re: Advanced routing option
- References:
- Advanced routing option
- From: tonix (Antonio Nati)
- Re: Advanced routing option
- From: Tom Judge
- Re: Advanced routing option
- From: tonix (Antonio Nati)
- Advanced routing option
- Prev by Date: Re: Backups Hardwares for FreeBSD
- Next by Date: Re: Advanced routing option
- Previous by thread: Re: Advanced routing option
- Next by thread: Re: Advanced routing option
- Index(es):
Relevant Pages
|
|
