Or maybe you want to set the source IP based on some external information (for
example what provider you received the default route from)?
Yes, maybe this one.
On Thu, November 21 2024 at 12:40 AM Alexander Zubkov
wrote:
It is still unclear what you want to achive. Do you want Linux to use both
IPs as src at once in ECMP-like manner? Or maybe you want to set the source
IP based on some external information (for example what provider you
received the default route from)? Something else?
On Wed, Nov 20, 2024 at 11:0
On 11/19/24 11:35 PM, Brian C. Hill via Bird-users wrote:
Hello,
Hi,
Pre-script, this touches on multiple things that I'm interested in and /
or actively working on, so I'm going to throw my hat into the ring. But
I could be so far off the mark that it's not even remotely funny.
I want to
On Tue, 19 Nov 2024, Brian C. Hill via Bird-users wrote:
Hello,
I want to use bird to mutually propagate routes throughout several sites
connected with vpn gateways, probably
with ospf.
ipsecvti is what you want
deb12 with strongswan/swanctl works well
I have swan2swan swan2srx swan2watc
I just think now these two VIP are unequal, because default routing will use
38.145.72.193 instead of 38.145.72.198… No actual problem now, just a question
and can we achieve this?
On Wed, November 20 2024 at 6:00 PM Alexander Zubkov
wrote:
And what is you intention then? You want to use both sources at once in
ecmp-like manner, when the server makes a connection? Or something else?
On Wed, Nov 20, 2024, 10:44 hans.heng wrote:
> You can set krt_prefsrc in bird. If I remember the option name right.
>
>
> But we have already this for
You can set krt_prefsrc in bird. If I remember the option name right.
But we have already this for the first virtual ip 38.145.72.193, I do not know
how to additionally add routing I mentioned in the previoius thread for the
second virtual ip 38.145.72.198.protocol kernel {
scan time 1;
m
You can set krt_prefsrc in bird. If I remember the option name right.
On Wed, Nov 20, 2024, 10:11 hans.heng wrote:
> > Hi Hans,
> >
> > What about just adding it to your LOCAL_NET list? If it works for the first
> > IP, why it shouldn't work for the other?
>
> Hi Alexander,
>
> You’re right, sim
> Hi Hans,
>
> What about just adding it to your LOCAL_NET list? If it works for the first
> IP, why it shouldn't work for the other?
Hi Alexander,
You’re right, simply adding it to LOCAL_NET list does work, other hosts then
can test tcp stream on this new virtual ip.
But what confused me is th
Hi Brian,
When I did something like that, I didn't even dig such deep to wed ipsec
tunnel policies with routing. IMHO it might work, but could hit you in
unexpected way. The option with vti looks more straightforward to me -
those guys live sepearately and do not harm each other. I.e. ipsec does i
Hi Hans,
What about just adding it to your LOCAL_NET list? If it works for the first
IP, why it shouldn't work for the other?
On Wed, Nov 20, 2024 at 8:36 AM Hans Heng via Bird-users <
bird-users@network.cz> wrote:
> Hi all!
>
> I have a dual-home server, whose connection topology and configurat
11 matches
Mail list logo
