On Sat, 2012-03-03 at 01:49 +0200, cmlitguy@xxxxxxxxx wrote:
> Hello,
> I have a question about possibility of making a redirect if NAT out
> interface tun0 is down.
> This is iptables rule for Masquerading our network via VPN connection.
>
> iptables --table nat --append POSTROUTING --out-interface tun0 -j MASQUERADE -m comment --comment "Masquerading"
>
> When VPN goes down, we can't access some resources and we need to verify
> its status and establish it again.
> Is it possible to make a redirect of all traffic to another host - Web
> Site(via IP address) of tun0 is down ?
If the interface actually does "down", then I would use your operating
system's networking scripts to run a "down" script. E.g. for Debian
use /etc/network/interfaces
If it just stops responding, then I'd consider LSM[1] to monitor it and
do something similar.
[1] http://lsm.foobar.fi/
--
To unsubscribe from this list: send the line "unsubscribe netfilter" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
[Linux Netfilter Development]
[Linux Kernel Networking Development]
[Linux Networking Development]
[Linux Kernel Development]
[Linux Resources]
[LARTC]
[Bugtraq]
[Consulting]
[Free Internet Dating]
[Yosemite Forum]
[Photo]
