Multi router networking

TODAY:
I have a linux (fedora core 2) with shorewall working with 1 adsl line and 8
ip adresses..
i've configured the linux machine with 5 public adresses on eth1 connected
to the router with one public ip, the lan on eth0, and everything is
working.. i let users connect to some lan machines via firewall routing, and
all local users surf the net via masquerading.

TOMORROW:
i'll have 3 routers (one hdsl and two 1,2mb adsl) on a switch where the
linux machine will be connected (eth1). I would like to shape the traffic,
letting lan user surf the net via one adsl, vpn and mail coming from the
other adsl, and remote customers come to my linux machine via the hdsl.

How i can tell the linux/shorewall to shape the traffic in this way? I know
that will be a difficult task, but i want to try....

Marco Paglioni

"Marco Paglioni" <(E-Mail Removed)> wrote in message news:<cdre20$n9p$(E-Mail Removed)>...

> TOMORROW:
> i'll have 3 routers (one hdsl and two 1,2mb adsl) on a switch where the
> linux machine will be connected (eth1). I would like to shape the traffic,
> letting lan user surf the net via one adsl, vpn and mail coming from the
> other adsl, and remote customers come to my linux machine via the hdsl.
>
> How i can tell the linux/shorewall to shape the traffic in this way? I know
> that will be a difficult task, but i want to try....

You can use iptables to mark the traffic from the LAN side with

iptables -t mangle -A PREROUTING -s 10.0.0.0/8 -j MARK --set-mark 1

and then use

ip rule add fwmark 1 table 100 pref 1000
ip route add table 200 scope global nexthop via x1.x2.x3.x4 dev eth2

to route all packages with mark 1 to eth2.

On the incoming traffic you need to set the DNS properly.

Regards
Morten Isaksen
http://www.aub.dk/~misak/