by Wu, Simon [WDLN2:2X38:EXCH » Mon, 02 Apr 2001 07:27:32
I am running Linux with Redhat6.2. I need to create a routing table
based on userid.
/sbin/route doesn't seem to have the option.
The Advanced Routing Howto mentioned it is capable with /sbin/ip route,
but didn't give more details. I could find any manpage or other detailed
info on /sbin/ip.
Any help will be greatly appreciated.
Simon
by Kenneth Stephe » Tue, 03 Apr 2001 12:01:40
> Hello,
> I am running Linux with Redhat6.2. I need to create a routing table
> based on userid.
> /sbin/route doesn't seem to have the option.
> The Advanced Routing Howto mentioned it is capable with /sbin/ip route,
> but didn't give more details. I could find any manpage or other detailed
> info on /sbin/ip.
> Any help will be greatly appreciated.
> Simon
If your objective is to provide a different routing scheme for each
user, then I'm afraid it cant be done. A routing table is set for a
machine - not at the user level. Thus it is even theoretically
impossible to do what you need.
If on the other hand, you have applications whose network traffic needs
to be redirected based on the user of the application, you will need to
read up on the protocol used by the application. Without more
information on what you are trying to do, it would be hard to help you.
Kenneth
by Manfred Bart » Tue, 03 Apr 2001 12:47:04
That is because it doesn't support what you want. ;)Quote:> I am running Linux with Redhat6.2. I need to create a routing table
> based on userid.
> /sbin/route doesn't seem to have the option.
Routing by user-ID should be possible in an indirect way but only
for traffic originating from the local host:
The new Netfilter which is part of Linux 2.4.x has a module which
can match the owner of a local socket/port. You may be able to use
that to give the packet a ``firewall-mark'' and then use that as
per the Advanced Routing Howto.
For packets which originate at a different host there is no ready
solution because IP, TCP and UDP packets do not carry any user-id
information as part of the protocol. I suppose you could devise
some sort of encapsulation protocol up to your router, but you'd
be on your own. ... Don't let that stop you :)
Information on Advanced Routing is still a bit thin. You'll justQuote:> The Advanced Routing Howto mentioned it is capable with /sbin/ip
> route, but didn't give more details. I could find any manpage or
> other detailed info on /sbin/ip.
Here are some of my bookmarks:
<http://snafu.freedom.org/linux2.2/iproute-notes.html>
<http://icawww1.epfl.ch/linux-diffserv/>
<http://qos.ittc.ukans.edu/>
--
Manfred
---------------------------------------------------------------
ipchainsLogAnalyzer, NetCalc, whois at: <http://logi.cc/linux/>
1. policy routing (routing based on source IP)
Hi, i'm trying to do routing based on source IP and not destination IP,
I tried the new "ipfw fwd" without success , do you know any other
way to do it ?
2. X server and NFS clients for Windows 95/NT
3. source based routing help needed
4. Zara rooted?
5. Routing problem with source-based routing and routing packets back to sender machine.
6. Pioneer DVR-A03 DVD-R/RW any issues?
7. Need the help of some TCP/IP routing sleuths!
9. IP Routing problem... Need expert help...
10. need help with subnetting/routing/IP accounting
11. I need help with IP routing
12. Need help setting up TCP/IP routing on Solaris 2.5.1
13. Help needed ... pointers to FreeBSD specific examples on IP and routing and natd