Hi all

I have some Shorewall firewalls, some of which have multiple internet links
(even 5-6). For some reason, I cannot simply balance my outgoing traffic on
the links, but I have to maintain some traffic types bound to certain
uplinks. So whenever a link goes up or down (I track this with lsm) I run a
script which updates the MARK values in the mangle file, then restart
shorewall.
I was just wondering if it would be possible and/or useful to be able to
reload only the mangle table without restarting the whole firewall.

Another more complicated but fantastic feature I don't know of would the
possibility to balance certain traffic types (maybe based on MARKs) over a
selection of the available providers. Something like numbered providers
groups, with the possibility to mark a packet in some group.

Any thoughts?

Thank you


------------------------------------------------------------------------------
_______________________________________________
Shorewall-users mailing list
Shorewall-users@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/shorewall-users

Reply via email to