|
Can I route by dst_port?
I want to send all packets from RIP to 0/0:80 through the
default gw, and all other packets from the RIP (eg to
0/0:other ports) to the DIP.
In my normal setup for VS-DR I send packets from the VIP
on the realservers to the default gw, while all packets
from the RIP I send to the DIP. I do this because I
assume that only packets from the VIP on the realserver
need to get to the outside world. There are normally
no clients on the realservers making calls to 0/0.
Any such packets are sent to the DIP, where a filter
drops them.
However in the case of a 3 tier system (eg the realservers
are squids), a client on the realserver will be making
calls to 0/0:80. It would be nice to route only those
packets and arrange for the rest of the packets to 0/0
to be dropped.
Thanks
Joe
--
Joseph Mack PhD, Senior Systems Engineer, Lockheed Martin
contractor to the National Environmental Supercomputer Center,
mailto:mack.joseph@xxxxxxx ph# 919-541-0007, RTP, NC, USA
|
