Исходное сообщение
"Маршрутизация 3х интерфейсов (2 инета и локалка)" Отправлено Nuplex, 10-Май-09 15:02
Есть следующая конфигурация: eth0 [NODHCP] dsl0(PPPoE через eth0) [DHCP почти статика 89.169.xxx.xxx] eth1 [DHCP 10.*] ppp1(L2TP через eth1) [DHCP статика 93.81.xxx.xxx] eth2 [192.168.0.1] # ifconfig dsl0      Link encap:Point-to-Point Protocol           inet addr:89.169.xxx.xxx  P-t-P:89.169.160.1  Mask:255.255.255.255           UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1492  Metric:1           RX packets:7490675 errors:0 dropped:0 overruns:0 frame:0           TX packets:8160596 errors:0 dropped:0 overruns:0 carrier:0           collisions:0 txqueuelen:3           RX bytes:451563604 (430.6 Mb)  TX bytes:3743527642 (3570.1 Mb) eth0      Link encap:Ethernet  HWaddr 00:02:B3:AF:79:41           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1           RX packets:521077846 errors:1048 dropped:0 overruns:0 frame:1048           TX packets:652456095 errors:0 dropped:0 overruns:0 carrier:0           collisions:0 txqueuelen:1000           RX bytes:850239036 (810.8 Mb)  TX bytes:2198245614 (2096.4 Mb) eth1      Link encap:Ethernet  HWaddr 00:02:B3:AF:78:46           inet addr:10.136.79.121  Bcast:10.136.79.255  Mask:255.255.248.0           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1           RX packets:977532635 errors:0 dropped:0 overruns:0 frame:0           TX packets:1025209745 errors:0 dropped:0 overruns:0 carrier:0           collisions:0 txqueuelen:1000           RX bytes:43266985 (41.2 Mb)  TX bytes:3199860349 (3051.6 Mb) eth2      Link encap:Ethernet  HWaddr 00:01:02:0A:6A:64           inet addr:192.168.0.1  Bcast:192.168.0.255  Mask:255.255.255.0           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1           RX packets:284572018 errors:0 dropped:0 overruns:2 frame:0           TX packets:169338395 errors:0 dropped:0 overruns:0 carrier:0           collisions:0 txqueuelen:1000           RX bytes:161147665 (153.6 Mb)  TX bytes:2988458699 (2850.0 Mb)           Interrupt:19 Base address:0x4400 lo        Link encap:Local Loopback           inet addr:127.0.0.1  Mask:255.0.0.0           UP LOOPBACK RUNNING  MTU:16436  Metric:1           RX packets:15642750 errors:0 dropped:0 overruns:0 frame:0           TX packets:15642750 errors:0 dropped:0 overruns:0 carrier:0           collisions:0 txqueuelen:0           RX bytes:1833404870 (1748.4 Mb)  TX bytes:1833404870 (1748.4 Mb) ppp1      Link encap:Point-to-Point Protocol           inet addr:93.81.xxx.xxx  P-t-P:85.21.0.249  Mask:255.255.255.255           UP POINTOPOINT RUNNING NOARP MULTICAST  MTU:1460  Metric:1           RX packets:968372019 errors:0 dropped:0 overruns:0 frame:0           TX packets:1023822429 errors:0 dropped:0 overruns:0 carrier:0           collisions:0 txqueuelen:3           RX bytes:2800852845 (2671.1 Mb)  TX bytes:1361983674 (1298.8 Mb) # ip rule 0:      from all lookup local 2000:   from 192.168.0.11 lookup inet_ppp1 2010:   from 192.168.0.10 lookup inet_ppp1 32764:  from 93.81.xxx.xxx lookup inet_ppp1 32765:  from 89.169.xxx.xxx lookup inet_dsl0 32766:  from all lookup main 32767:  from all lookup default # ip route list 85.21.192.3 via 10.136.72.1 dev eth1 217.118.84.213 dev eth1  scope link 213.234.192.8 via 10.136.72.1 dev eth1 85.21.0.251 via 10.136.72.1 dev eth1 89.169.160.1 dev dsl0  proto kernel  scope link  src 89.169.xxx.xxx 85.21.0.249 dev ppp1  proto kernel  scope link  src 93.81.xxx.xxx 217.118.84.249 dev eth1  scope link 78.107.235.4/30 via 10.136.72.1 dev eth1 85.21.72.80/28 via 10.136.72.1 dev eth1 78.107.51.0/28 via 10.136.72.1 dev eth1 83.102.231.32/28 via 10.136.72.1 dev eth1 85.21.108.16/28 via 10.136.72.1 dev eth1 85.21.138.208/28 via 10.136.72.1 dev eth1 83.102.146.96/27 via 10.136.72.1 dev eth1 233.32.240.0/24 via 10.136.79.121 dev eth1 192.168.0.0/24 dev eth2  proto kernel  scope link  src 192.168.0.1 85.21.90.0/24 via 10.136.72.1 dev eth1 78.107.23.0/24 via 10.136.72.1 dev eth1 85.21.79.0/24 via 10.136.72.1 dev eth1 78.107.196.0/22 via 10.136.72.1 dev eth1 10.136.72.0/21 dev eth1  proto kernel  scope link  src 10.136.79.121 169.254.0.0/16 dev eth1  scope link 10.0.0.0/8 via 10.136.72.1 dev eth1 127.0.0.0/8 dev lo  scope link default dev dsl0  scope link # ip route list table inet_dsl0 89.169.160.1 dev dsl0  proto kernel  scope link  src 89.169.xxx.xxx 85.21.0.249 dev ppp1  proto kernel  scope link  src 93.81.xxx.xxx 192.168.0.0/24 dev eth2  scope link  src 192.168.0.1 169.254.0.0/16 dev eth1  scope link 127.0.0.0/8 dev lo  scope link default dev dsl0  scope link # ip route list table inet_ppp1 89.169.160.1 dev dsl0  proto kernel  scope link  src 89.169.xxx.xxx 85.21.0.249 dev ppp1  proto kernel  scope link  src 93.81.xxx.xxx 192.168.0.0/24 dev eth2  scope link  src 192.168.0.1 10.136.72.0/21 dev eth1  proto kernel  scope link  src 10.136.79.121 169.254.0.0/16 dev eth1  scope link 10.0.0.0/8 via 10.136.72.1 dev eth1 127.0.0.0/8 dev lo  scope link default dev ppp1  scope link В итоге видим примерную картину в /var/log/messages : May 10 13:42:12 *** kernel: martian source 192.168.0.12 from 89.31.88.75, on dev ppp1 May 10 13:42:12 *** kernel: ll header: 45:00:00:34 May 10 13:42:17 *** kernel: printk: 5 messages suppressed. May 10 13:42:17 *** kernel: martian source 192.168.0.12 from 80.240.220.55, on dev ppp1 May 10 13:42:17 *** kernel: ll header: 45:00:00:34 May 10 13:42:22 *** kernel: printk: 8 messages suppressed. May 10 13:42:22 *** kernel: martian source 192.168.0.12 from 93.190.104.86, on dev ppp1 May 10 13:42:22 *** kernel: ll header: 45:00:00:30 May 10 13:42:27 *** kernel: printk: 5 messages suppressed. May 10 13:42:27 *** kernel: martian source 192.168.0.12 from 85.234.173.6, on dev ppp1 May 10 13:42:27 *** kernel: ll header: 45:00:00:30 May 10 13:42:32 *** kernel: printk: 7 messages suppressed. May 10 13:42:32 *** kernel: martian source 192.168.0.12 from 92.112.32.1, on dev ppp1 May 10 13:42:32 *** kernel: ll header: 45:00:00:34 May 10 13:42:38 *** kernel: printk: 9 messages suppressed. May 10 13:42:38 *** kernel: martian source 192.168.0.12 from 95.25.9.220, on dev ppp1 May 10 13:42:38 *** kernel: ll header: 45:00:00:34 May 10 13:42:42 *** kernel: printk: 9 messages suppressed. May 10 13:42:42 *** kernel: martian source 192.168.0.12 from 213.85.189.1, on dev ppp1 May 10 13:42:42 *** kernel: ll header: 45:00:00:34 May 10 13:42:47 *** kernel: printk: 9 messages suppressed. May 10 13:42:47 *** kernel: martian source 192.168.0.12 from 78.106.243.128, on dev ppp1 May 10 13:42:47 *** kernel: ll header: 45:00:00:34 May 10 13:42:53 *** kernel: printk: 6 messages suppressed. May 10 13:42:53 *** kernel: martian source 192.168.0.12 from 78.106.243.128, on dev ppp1 May 10 13:42:53 *** kernel: ll header: 45:00:00:34 May 10 13:42:59 *** kernel: printk: 7 messages suppressed. May 10 13:42:59 *** kernel: martian source 192.168.0.11 from 95.106.0.10, on dev dsl0 May 10 13:42:59 *** kernel: ll header: 00:01:02:0a:6a:64:00:16:e6:60:38:f3:08:00:45:00:05:c8:7f:a5:40:00 May 10 13:43:02 *** kernel: printk: 3 messages suppressed. May 10 13:43:02 *** kernel: martian source 192.168.0.12 from 93.190.104.86, on dev ppp1 May 10 13:43:02 *** kernel: ll header: 45:00:00:30 May 10 13:43:07 *** kernel: printk: 8 messages suppressed. May 10 13:43:07 *** kernel: martian source 192.168.0.12 from 92.100.4.225, on dev ppp1 May 10 13:43:07 *** kernel: ll header: 45:00:00:34 ... 192.168.0.12 - адрес в нашей локалке, который должен пользоваться услугами провайдера dsl0 Задача распределить сервисвисы между двумя провайдерами и раздавать интернет в локалке через разные шлюзы (одних через провайдера номер 1 других через провайдера номер 2. Что интересно схема работает, но наблюдается чрезмерный срач в логах, что ядру не нравится господа, подскажите или где я накосячил с роутингом? sysctl -w net.ipv4.conf.all.log_martians=0 не выход.