Login or Register to Ask a Question and Join Our Community

Sponsored Content
Full Discussion: Routing by connection tracking
Special Forums IP Networking Routing by connection tracking Post 302527176 by michas on Thursday 2nd of June 2011 05:55:42 PM
Old 06-02-2011
Routing by connection tracking
Hello,

I have switch port, that allows only a single MAC/IP connected to it. - But, I would like to connect two hosts, without any additional private network. (No NAT.)

Therefore the plan is adding a linux router doing proxy-arp with three interfaces, one for host1, one for host2 and one for the remaining LAN.

Now I would like to give both hosts the same IP address and use connection tracking to route a packet to host2 if and only if the connection was initiated by host2 itself.

Therefore, for both the hosts and the LAN, it should look like there is only one single host on my side.

What is the right way to do this?

Shouldn't it be possible to simply mark a connection initiated by host2 with CONNMARK and afterwards use policy routing to route all packages of marked connection to host2? (Anyone already did such things?)

Are there more problems I do not see yet?

I'm pretty much sure, that I am not the first one trying to do such things. Do you have any pointers for me to read?
Last edited by michas; 06-03-2011 at 04:53 AM..
 

10 More Discussions You Might Find Interesting

1. UNIX for Advanced & Expert Users

Command Tracking

Hi, OS: Solaris9, SPARC Is there any way I can track the commands run by users from the shell prompt? Example: Somebody is deleting files from the system. Who it is is a mystery. That person obviously does not use bash prompt so there is no history. Is there anyway I can find out who... (5 Replies)
Discussion started by: mahatma
5 Replies

2. UNIX for Advanced & Expert Users

Tracking user

dear all, I'm facing problem that is i have noticed from few days back that some body is deleting and making changes in the file from developement server where i'm working(in unix) so i want to track that who is using the server, what performancr they are doing and each every thing which r... (5 Replies)
Discussion started by: panknil
5 Replies

3. UNIX for Advanced & Expert Users

Tracking down the problem

Is there a way to track down what process is sending to a certain port? I have some thing pounding the network with requests to a multicast IP that doesn't exist. I have shut down all comms related processes and yet it is still there. Need a way to track the port or IP back to the process. Thanks... (3 Replies)
Discussion started by: mattmanuel
3 Replies

4. UNIX for Dummies Questions & Answers

tracking root users

Hi everyone hope you can help me i have 5 root users and the problem with that is how can you see witch root user did what on the box how can you track the users that played on the servers. 1) What commands they typed (in linux you get history ) 2) From witch ip did they connect to the server (3 Replies)
Discussion started by: sucram
3 Replies

5. IP Networking

netfilter connection tracking

hi, i'm using tcpreplay to send a traffic trace to my wireless interface (the trace is been captured by the same interface). It seems as netfilter can't trace connections. Is it possible? (0 Replies)
Discussion started by: littleboyblu
0 Replies

6. UNIX for Advanced & Expert Users

Connection reset by peer..closing connection

Hello I'm facing the above problem while doing a performance run. I've a script which I'm launching from my windows desktop using mozilla. The script will invoke backend action on a Solaris host which in turn feeds the records to a driver located on a linux box(Cent OS). What's happening is... (1 Reply)
Discussion started by: subramanyab
1 Replies

7. Solaris

Solaris 10 ftp connection problem (connection refused, connection timed out)

Hi everyone, I am hoping anyone of you could help me in this weird problem we have in 1 of our Solaris 10 servers. Lately, we have been having some ftp problems in this server. Though it can ping any server within the network, it seems that it can only ftp to a select few. For most servers, the... (4 Replies)
Discussion started by: labdakos
4 Replies

8. AIX

Tracking Root commands

Hi All How can track what commands are entered by the Root user. Is there a log besides using the history command that lists all commands entered for a period of time. thanks:o (6 Replies)
Discussion started by: pashan
6 Replies

9. Red Hat

Tracking Process to a particular

I've tried to see what I can find on my own but I'm coming up with goose eggs. Basically I was wondering if there was a way of querying the scheduler (or something similar) to track a process back to a particular CPU it's executing on at the time of the command. ps has a "cpu" output option but... (1 Reply)
Discussion started by: thmnetwork
1 Replies

10. UNIX for Advanced & Expert Users

How keep running a program n an another computer via a connection ssh when the connection is closed?

Hi everybody, I am running a program on a supercomputer via my personal computer through a ssh connection. My program take more than a day to run, so when I left work with my PC I stop the connection with the supercomputer and the program stop. I am wondering if someone know how I can manage... (2 Replies)
Discussion started by: TomTomGre
2 Replies

LEARN ABOUT OPENSOLARIS

ypset

ypset(1M)						  System Administration Commands						 ypset(1M)

NAME

       ypset - point ypbind at a particular server

SYNOPSIS

       /usr/sbin/ypset [-d ypdomain] [-h host] server

DESCRIPTION

       In order to run ypset, ypbind must be initiated with the -ypset or -ypsetme options. See ypbind(1M). ypset tells ypbind to get NIS services
       for the specified ypdomain from the ypserv process running on server. If server is down, or is not running ypserv, this might not  be  dis-
       covered	until an NIS client process tries to obtain a binding for the domain. At this point, the binding set by ypset is tested by ypbind.
       If the binding is invalid, ypbind attempts to rebind for the same domain.

       ypset is useful for binding a client node that is not on a broadcast net, or is on a broadcast net that is not running an NIS server  host.
       It is also useful for debugging NIS client applications, for instance, where an NIS map exists only at a single NIS server host.

       Where  several  hosts on the local net are supplying NIS services, ypbind can rebind to another host, even while you attempt to find out if
       the ypset operation succeeded.  For example, if you enter the ypset command below, you might get the subsequent response from ypwhich:

	 example% ypset host1
	 example% ypwhich
	 host2

       The sequence shown above is a function of the NIS subsystem's attempt to load-balance among the available  NIS  servers,  and  occurs  when
       host1 does not respond to ypbind because it is not running ypserv (or is overloaded), and host2, running ypserv, obtains the binding.

       server  indicates  which NIS server to bind to, and must be specified as a name or an IP address. This works only if the node has a current
       valid binding for the domain in question and ypbind has been set to allow use of ypset. In most cases, server should be specified as an	IP
       address.

       ypset tries to bind over a connectionless transport. The NIS library call, yp_all(), uses connection-oriented transport and derives the NIS
       server's address  based on the connectionless address supplied by ypset.

       Refer to ypfiles(4) for an overview of the NIS name service.

OPTIONS

       -d ypdomain    Use ypdomain, instead of the default domain.

       -h host	      Set ypbind's binding on host, instead of locally. Specify host as a name.

ATTRIBUTES

       See attributes(5) for descriptions of the following attributes:

       +-----------------------------+-----------------------------+
       |      ATTRIBUTE TYPE	     |	    ATTRIBUTE VALUE	   |
       +-----------------------------+-----------------------------+
       |Availability		     |SUNWnisu			   |
       +-----------------------------+-----------------------------+

SEE ALSO

       ypwhich(1), ypfiles(4), attributes(5)

SunOS 5.11							    14 Sep 1992 							 ypset(1M)
All times are GMT -4. The time now is 01:20 PM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy