This shows you the differences between two versions of the page.
Both sides previous revision Previous revision | |||
iptables [2014/11/24 02:11] ben |
iptables [2014/11/24 02:15] (current) ben |
||
---|---|---|---|
Line 10: | Line 10: | ||
To permanently affect the changes to the configuration, | To permanently affect the changes to the configuration, | ||
- | {{Command|< | + | {{Command|'' |
===== Host firewalls ===== | ===== Host firewalls ===== | ||
Line 23: | Line 23: | ||
Policy routing needs the following kernel options set: | Policy routing needs the following kernel options set: | ||
- | {{Kernel|2.6.28-gentoo-r1|< | + | {{Kernel|2.6.28-gentoo-r1|'' |
Create an alternate routing table by adding the following line to the end of '' | Create an alternate routing table by adding the following line to the end of '' | ||
- | {{File|/ | + | {{File|/ |
{{Note|The name " | {{Note|The name " | ||
The default gateway should be added to both routing tables, along with any other static routes if needed. | The default gateway should be added to both routing tables, along with any other static routes if needed. | ||
- | {{File|/ | + | {{File|/ |
Now we need to specify that certain connections will be sent according to the alternate routing table instead of the main one. These scripts are stored in subversion, under '' | Now we need to specify that certain connections will be sent according to the alternate routing table instead of the main one. These scripts are stored in subversion, under '' | ||
- | {{File|/ | + | {{File|/ |
- | {{File|/ | + | {{File|/ |
The final bit of magic comes in the form of some iptables rules, which mark particular connections to use the alternate routing table: | The final bit of magic comes in the form of some iptables rules, which mark particular connections to use the alternate routing table: | ||
- | {{File|iptables-rules|< | + | {{File|iptables-rules|'' |
==== Traffic Shaping ==== | ==== Traffic Shaping ==== |