Hi all I have some Shorewall firewalls, some of which have multiple internet links (even 5-6). For some reason, I cannot simply balance my outgoing traffic on the links, but I have to maintain some traffic types bound to certain uplinks. So whenever a link goes up or down (I track this with lsm) I run a script which updates the MARK values in the mangle file, then restart shorewall. I was just wondering if it would be possible and/or useful to be able to reload only the mangle table without restarting the whole firewall.
Another more complicated but fantastic feature I don't know of would the possibility to balance certain traffic types (maybe based on MARKs) over a selection of the available providers. Something like numbered providers groups, with the possibility to mark a packet in some group. Any thoughts? Thank you ------------------------------------------------------------------------------ _______________________________________________ Shorewall-users mailing list Shorewall-users@lists.sourceforge.net https://lists.sourceforge.net/lists/listinfo/shorewall-users