Endian backup link

classic Classic list List threaded Threaded
2 messages Options
Reply | Threaded
Open this post in threaded view
|

Endian backup link

Gabriel Ozaki
Hi guys
I have a client who uses  the endian firewall 2.5.2 and the backup link do not work, so i create a test scenario:
*Endian firewall 2.5.2
eth0 -  The local network, the clients will come by here - ENDIAN IP 10.0.0.100/24
eth1 - Main connection - A static ip network, i have a firewall in ip 192.168.0.1 - ENDIAN IP 192.168.0.188/24
eth2 - Backup connection - A pppoe client, will get dynamic IP


The tests:
*Create a client on ip 10.0.0.102/24 and he access the internet by main connection(TEST OK)
*Disable only the backup connection and the client still using the main connection(TEST OK)
*Disable only the main connection and the client now is using the backup connection(TEST OK)

Now i try to simulate a fail link(gateway stop working) using my firewall(192.168.0.1), the first test is to drop incomming endian packages(non-responsive gateway) usint this iptables rule:
iptables -I FORWARD -s 192.168.0.188 -j DROP
iptables -I INPUT -s 192.168.0.188 -j DROP

And the client(10.0.0.102) cannot acess the internet, i have to manually disable the main connection

The second test is the same, but uses REJECT on iptables rule:
iptables -I INPUT -s 192.168.0.188 -j REJECT
iptables -I FORWARD -s 192.168.0.188 -j REJECT

I need to switch links automatically, this is possible?

Thanks
Sorry for the bad english

PS: the map of test scenario







------------------------------------------------------------------------------

_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user
Reply | Threaded
Open this post in threaded view
|

Re: Endian backup link

Jonathan Lessa
Teste habilitar nas configurações das interface WAN (zona vermelha), a opção "Verifique se estes hosts são alcaçáveis"

Test enable in the settings of the WAN interfaces (red zone), the "Verify that these hosts are alcaçáveis"






2016-09-09 10:28 GMT-03:00 Gabriel Ozaki <[hidden email]>:
Hi guys
I have a client who uses  the endian firewall 2.5.2 and the backup link do not work, so i create a test scenario:
*Endian firewall 2.5.2
eth0 -  The local network, the clients will come by here - ENDIAN IP 10.0.0.100/24
eth1 - Main connection - A static ip network, i have a firewall in ip 192.168.0.1 - ENDIAN IP 192.168.0.188/24
eth2 - Backup connection - A pppoe client, will get dynamic IP


The tests:
*Create a client on ip 10.0.0.102/24 and he access the internet by main connection(TEST OK)
*Disable only the backup connection and the client still using the main connection(TEST OK)
*Disable only the main connection and the client now is using the backup connection(TEST OK)

Now i try to simulate a fail link(gateway stop working) using my firewall(192.168.0.1), the first test is to drop incomming endian packages(non-responsive gateway) usint this iptables rule:
iptables -I FORWARD -s 192.168.0.188 -j DROP
iptables -I INPUT -s 192.168.0.188 -j DROP

And the client(10.0.0.102) cannot acess the internet, i have to manually disable the main connection

The second test is the same, but uses REJECT on iptables rule:
iptables -I INPUT -s 192.168.0.188 -j REJECT
iptables -I FORWARD -s 192.168.0.188 -j REJECT

I need to switch links automatically, this is possible?

Thanks
Sorry for the bad english

PS: the map of test scenario







------------------------------------------------------------------------------

_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user




--
Att.:
Jonathan Lessa
Licenciado em Informática

------------------------------------------------------------------------------

_______________________________________________
Efw-user mailing list
[hidden email]
https://lists.sourceforge.net/lists/listinfo/efw-user