Re: Dual WAN

To: Gerard Lally <gerard%netmail.ie@localhost>
Subject: Re: Dual WAN
From: "Brian Seklecki (Mobile)" <lavalamp%probikesllc.com@localhost>
Date: Fri, 4 Nov 2011 10:11:13 -0400 (EDT)

If you don't need NAT, you can use standard routing tables to specifyoutbound interfaces on a per-destination basis.

For more granulatity, or to use NAT, use PF to map on a per-L3/L4protocol, in combination with supernet routing.

For example, if 10.0.0.0/8 is the corp network behind the VPN router,you'd have:


route add 0.0.0.0 0.0.0.0 172.16.1.254
route add 10.0.0.0 255.0.0.0 10.5.4.1

If your ISP is filtering some protocol (SMTP), but your corp networkforwards it fine, ou'll have to use NAT or policy route statements to pushit on a per-UDP/TCP port basis


~BAS

References:
- Dual WAN
  - From: Gerard Lally

Prev by Date: Dual WAN
Next by Date: How to include items for build with build.sh?
Previous by Thread: Dual WAN
Next by Thread: How to include items for build with build.sh?
Indexes:

Home | Main Index | Thread Index | Old Index