06-02-2011
Routing by connection tracking
Hello,
I have switch port, that allows only a single MAC/IP connected to it. - But, I would like to connect two hosts, without any additional private network. (No NAT.)
Therefore the plan is adding a linux router doing proxy-arp with three interfaces, one for host1, one for host2 and one for the remaining LAN.
Now I would like to give both hosts the same IP address and use connection tracking to route a packet to host2 if and only if the connection was initiated by host2 itself.
Therefore, for both the hosts and the LAN, it should look like there is only one single host on my side.
What is the right way to do this?
Shouldn't it be possible to simply mark a connection initiated by host2 with CONNMARK and afterwards use policy routing to route all packages of marked connection to host2? (Anyone already did such things?)
Are there more problems I do not see yet?
I'm pretty much sure, that I am not the first one trying to do such things. Do you have any pointers for me to read?
Last edited by michas; 06-03-2011 at 04:53 AM..
10 More Discussions You Might Find Interesting
1. UNIX for Advanced & Expert Users
Hi,
OS: Solaris9, SPARC
Is there any way I can track the commands run by users from the shell prompt?
Example:
Somebody is deleting files from the system. Who it is is a mystery. That person obviously does not use bash prompt so there is no history. Is there anyway I can find out who... (5 Replies)
Discussion started by: mahatma
5 Replies
2. UNIX for Advanced & Expert Users
dear all,
I'm facing problem that is i have noticed from few days back that some body is deleting and making changes in the file from developement server where i'm working(in unix)
so i want to track that who is using the server, what performancr they are doing and each every thing which r... (5 Replies)
Discussion started by: panknil
5 Replies
3. UNIX for Advanced & Expert Users
Is there a way to track down what process is sending to a certain port? I have some thing pounding the network with requests to a multicast IP that doesn't exist. I have shut down all comms related processes and yet it is still there. Need a way to track the port or IP back to the process. Thanks... (3 Replies)
Discussion started by: mattmanuel
3 Replies
4. UNIX for Dummies Questions & Answers
Hi everyone hope you can help me
i have 5 root users and the problem with that is how can you see
witch root user did what on the box how can you track the users that
played on the servers.
1) What commands they typed (in linux you get history )
2) From witch ip did they connect to the server (3 Replies)
Discussion started by: sucram
3 Replies
5. IP Networking
hi,
i'm using tcpreplay to send a traffic trace to my wireless interface (the trace is been captured by the same interface). It seems as netfilter can't trace connections. Is it possible? (0 Replies)
Discussion started by: littleboyblu
0 Replies
6. UNIX for Advanced & Expert Users
Hello
I'm facing the above problem while doing a performance run. I've a script which I'm launching from my windows desktop using mozilla. The script will invoke backend action on a Solaris host which in turn feeds the records to a driver located on a linux box(Cent OS).
What's happening is... (1 Reply)
Discussion started by: subramanyab
1 Replies
7. Solaris
Hi everyone,
I am hoping anyone of you could help me in this weird problem we have in 1 of our Solaris 10 servers. Lately, we have been having some ftp problems in this server. Though it can ping any server within the network, it seems that it can only ftp to a select few. For most servers, the... (4 Replies)
Discussion started by: labdakos
4 Replies
8. AIX
Hi All
How can track what commands are entered by the Root user. Is there a log besides using the history command that lists all commands entered for a period of time.
thanks:o (6 Replies)
Discussion started by: pashan
6 Replies
9. Red Hat
I've tried to see what I can find on my own but I'm coming up with goose eggs. Basically I was wondering if there was a way of querying the scheduler (or something similar) to track a process back to a particular CPU it's executing on at the time of the command. ps has a "cpu" output option but... (1 Reply)
Discussion started by: thmnetwork
1 Replies
10. UNIX for Advanced & Expert Users
Hi everybody,
I am running a program on a supercomputer via my personal computer through a ssh connection. My program take more than a day to run, so when I left work with my PC I stop the connection with the supercomputer and the program stop.
I am wondering if someone know how I can manage... (2 Replies)
Discussion started by: TomTomGre
2 Replies
ypset(8) System Manager's Manual ypset(8)
NAME
ypset - bind ypbind to a particular NIS server
SYNOPSIS
ypset [ -d domain ] [ -h hostname ] server
DESCRIPTION
In order to run ypset, ypbind must be initiated with the -ypset or -ypsetme options. See ypbind(8). ypset tells ypbind to get NIS ser-
vices for the specified domain from the ypserv(8) process running on server.
In cases where several hosts on the local net are supplying NIS services, it is possible for ypbind to rebind to another host even while
you attempt to find out if the ypset operation succeeded. For example, you can type:
example% ypset host1
example% ypwhich
host2
which can be confusing. This is a function of the NIS subsystem's attempt to know always a running NIS server, and occurs when host1 does
not respond to ypbind because it is not running ypserv (or is overloaded), and host2, running ypserv, gets the binding.
Server indicates the NIS server to bind to, and must be specified as a name or an IP address. This will work only if the node has a cur-
rent valid binding for the domain in question, and ypbind has been set to allow use of ypset. In most cases, server should be specified
as an IP address.
OPTIONS
-d domain
Specify a domain other than the default domain as returned by domainname(8).
-h hostname
Set the NIS binding on host hostname
instead of the local machine.
SEE ALSO
domainname(8), ypbind(8), ypcat(8), ypmatch(1), ypserv(8), yppoll(8), ypwhich(1)
AUTHOR
ypset is part of the yp-tools package, which was written by Thorsten Kukuk <kukuk@linux-nis.org>.
YP Tools 2.12 April 2010 ypset(8)