Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Iptables to change source IP
Top Forums UNIX for Dummies Questions & Answers Iptables to change source IP Post 302478973 by msarro on Thursday 9th of December 2010 10:06:37 AM
Old 12-09-2010
The snmp request comes in and is received by the SNMP daemon running on the system. It generates a reply, however when it generates the reply it uses the IP of another interface on the system. Because of routing rules in place, that IP gets forwarded out of a different interface. So what I need to do is change the source IP in the SNMP reply before it hits the routing tables configured in IPROUTE2, so it can then have the correct route applied and be sent out the correct interface.

The IP address it's trying to reply with is a real address, but its on a different network than the management network. So when the reply gets sent out, its not routable to the requestor. It also is stopping traps from working.
Last edited by msarro; 12-09-2010 at 11:16 AM..
 

9 More Discussions You Might Find Interesting

1. UNIX for Dummies Questions & Answers

qt from source

i'm installing qt from source, and while making i get an error having to do with a "pthread library." what libraries do i need to install for qt to compile, and where can i get them? (1 Reply)
Discussion started by: nydel
1 Replies

2. UNIX Desktop Questions & Answers

Change time source?

I need to change the time on my SUN box, it is five minutes fast. (4 Replies)
Discussion started by: michelemcdonald
4 Replies

3. Shell Programming and Scripting

. and source

What's the difference of using "." and "source", such as ". .bashrc" and "source .bashrc"? (1 Reply)
Discussion started by: learn
1 Replies

4. Shell Programming and Scripting

Source

I have a script in /etc/rc2.d that needs to run on boot up the file looks like this #!/sbin/sh source /abc/scripts/test_env.sh /abc/xyz/run I need to source the test_env.sh script they are both bash how do i do that? 'source /abc/scripts/test_env.sh' I am not too sure (3 Replies)
Discussion started by: deaconf19
3 Replies

5. Shell Programming and Scripting

How to change values in datafile from source file

Hi all, I have this source file source.txt : hdrEthernetSwitch1IPAddress 112.13.9.34 hdrEthernetSwitch2IPAddress 112.13.8.245 noOfRevASLAvailable 8000 noOfRevASLInUse 122 maxDOSPayload 7777 pcmdEvdoRUM Enabled pcmdEvdoFlow Enabled And I have this datafile to be modified : ... (5 Replies)
Discussion started by: luna_soleil
5 Replies

6. Shell Programming and Scripting

Change the content of files but not change the date

I have 100 files in a directory , all the files have a word "error" and they are created in different date . Now I would like to change the word from "error" to "warning" , and keep the date of the files ( that means do not change the file creation date after change the word ) , can advise what can... (0 Replies)
Discussion started by: ust3
0 Replies

7. Shell Programming and Scripting

Change the content of files but not change the date

I have 100 files in a directory , all the files have a word "error" and they are created in different date . Now I would like to change the word from "error" to "warning" , and keep the date of the files ( that means do not change the file creation date after change the word ) , can advise what can... (7 Replies)
Discussion started by: ust3
7 Replies

8. IP Networking

Change source ip on static internet

Hi, Environment: Linux: Ubuntu 12.04 I am connected to internet using static ip. This means my internet provider Pacenet has assigned me static ip. Now, whenever I am trying to change source ip for tcp/ip (ip4) using iptables firewall, I am unable to access internet at all. Can anybody... (4 Replies)
Discussion started by: ashv
4 Replies

9. SCO

How to change raid controller driver ? (hardware change)

Hello I'm trying to virtualize an instance of Sco Unix 5.0.5 in VirtualBox (called VM-A) , but sco I have problems set to launch with the new raid controller . The physical machine has a raid controller adaptec (alad driver) but VirtualBox uses buslogic (blc driver) What ... (3 Replies)
Discussion started by: flako
3 Replies

LEARN ABOUT ULTRIX

routed

routed(8c)																routed(8c)

Name
       routed - network routing daemon

Syntax
       /etc/routed [ options ] [ logfile ]

Description
       The program is invoked at boot time to manage the network routing tables.  The routing daemon uses a variant of the Xerox NS Routing Infor-
       mation Protocol in maintaining up-to-date kernel routing table entries.

       In normal operation the program listens on a socket for packets of routing information.	If the host is an internetwork router, it periodi-
       cally supplies copies of its routing tables to any directly connected hosts and networks.

       When  is  started,  it uses the SIOCGIFCONF ioctl to find those directly connected interfaces configured into the system and marked up (the
       software loopback interface is ignored).  If multiple interfaces are present, it is assumed that the host will forward packets between net-
       works.	The command then transmits a request packet on each interface using a broadcast packet, if the interface supports it, and enters a
       loop, listening for request and response packets from other hosts.

       When a request packet is received, formulates a reply based on the information maintained in its internal tables.  The response packet gen-
       erated  contains  a list of known routes, each marked with a hop count metric. A count of 16 or greater is considered infinite.	The metric
       associated with each route returned provides a metric "relative to the sender".

       The response packets received by are used to update the routing tables if one of the following conditions is satisfied:

       o   No routing table entry exists for the destination network or host, and the metric indicates the destination is reachable.  That is, the
	   hop count is not infinite.

       o   The	source	host  of  the packet is the same as the router in the existing routing table entry.  That is, updated information is being
	   received from the very internetwork router through which packets for the destination are being routed.

       o   The existing entry in the routing table has not been updated for some time (defined to be 90 seconds) and the route is at least as cost
	   effective as the current route.

       o   The	new  route describes a shorter route to the destination than the one currently stored in the routing tables. The metric of the new
	   route is compared against the one stored in the table to decide this.

       When an update is applied, the command records the change in its internal tables and generates a response packet to all directly  connected
       hosts  and  networks.   The  command waits a short period of time (no more than 30 seconds) before modifying the kernel's routing tables to
       allow possible unstable situations to settle.

       In addition to processing incoming packets, the command periodically checks the routing table entries.  If an entry has	not  been  updated
       for 3 minutes, the entry's metric is set to infinity and marked for deletion.  Deletions are delayed an additional 60 seconds to insure the
       invalidation is propagated throughout the internet.

       Hosts acting as internetwork routers supply their routing tables every 30 seconds to  all  directly  connected  hosts  and  networks.   The
       response  is sent to the broadcast address on nets capable of that function, to the destination address on point-to-point links, and to the
       router's own address on other networks.	The normal routing tables are bypassed when sending responses.	The reception of responses on each
       network	is used to determine if that network and interface are functioning correctly.  If no response is received on an interface, another
       route may be chosen to route around the interface, or the route may be dropped if no alternative is available.

       The program supports the notion of distant passive and active gateways.	When is started up, it reads the file to find gateways	which  may
       not  be	identified  using  the	SIOGIFCONF  ioctl.  Gateways specified in this manner should be marked passive if they are not expected to
       exchange routing information, while gateways marked active should be willing to exchange routing information (that is, they should  have  a
       process running on the machine).  Passive gateways are maintained indefinitely in routing tables.  Note, however, that passive gateways are
       known only to the local host that lists them in its file.  Information about passive gateways is not included in  any  routing  information
       that is transmitted.

       Active gateways are treated equally to network interfaces.  Routing information is distributed to the gateway and if no routing information
       is received for a period of time, the associated route is deleted.

       External gateways are also passive, but are not placed in the kernel routing table nor are they included in routing updates.  The  function
       of  external  entries  is  to  inform that another routing process will install such a route, and that alternate routes to that destination
       should not be installed.  Such entries are only required when both routers may learn of routes to the same destination.

       The is a series of lines, each in the following format:

       < net | host > name1 gateway name2 metric value < passive | active | external >

       The net or host keyword indicates if the route is to a network or specific host.

       The name1 is the name of the destination network or host.  This may be a symbolic name located in or or an Internet  address  specified	in
       dot notation.  For further information, see

       The name2 is the name or address of the gateway to which messages should be forwarded.

       The value is a metric indicating the hop count to the destination host or network.

       The  keywords  passive,	active,  or  external indicate if the gateway should be treated as passive or active (as previously described), or
       whether the gateway is external to the scope of the protocol.

       Any other argument supplied is interpreted as the name of a file in which the actions of should be logged.  This log  contains  information
       about any changes to the routing tables and a history of recent messages sent and received which are related to the changed route.

Options
       -d   Enables additional debugging information to be logged, such as bad packets received.

       -g   Offers  a  route,  on  internetwork routers, to the default destination.  This is typically used on a gateway to the Internet, or on a
	    gateway that uses another routing protocol whose routes are not reported to other local routers.

       -s   Forces to supply routing information whether it is acting as an internetwork router or not.

       -q   Opposite of the option.

       -t   Prints all packets, sent or received, on the standard output.  In addition, continues to receive input from the controlling  terminal,
	    so that interrupts from the keyboard will kill the process.

Restrictions
       The  kernel's  routing  tables may not correspond to those of for short periods of time while processes utilizing existing routes exit; the
       only remedy for this is to place the routing process in the kernel.

       The command should listen to intelligent interfaces, such as an IMP, and to error protocols, such as  ICMP,  to	gather	more  information.
       However, it does not always detect unidirectional failures in network interfaces, such as when the output side fails.

Files
       For distant gateways

See Also
       udp(4p), htable(8)

																	routed(8c)
All times are GMT -4. The time now is 08:48 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy