is it possible to route traffic based on aliases?

Started by tswalker, March 13, 2021, 05:18:02 AM

Previous topic - Next topic
Print
Go Down Pages1
User actions
March 13, 2021, 05:18:02 AM
I tried setting up rules to be applied for a particular gateway, but this didn't do what I thought it would... route that traffic over the interface.

Only seem to be able to setup routing based on network address.  Is there a way to setup routes based on aliases?
March 13, 2021, 08:58:34 AM #1
It might work with gateway rules in firewall, but not with kernel routes
March 22, 2024, 05:01:42 PM #2
Possibly when using the route update mechanism. In my case, I needed to organize routing into a VPN tunnel for several subnets, and also use NAT to ensure that the user's IP was replaced with the client's VPN IP. I created an alias "subnets" and added it to the NAT firewall rules, and also when connecting to a VPN, a script is executed
Code Select

#!/bin/bash
vpnIf="$1"
defIf="bridge1"
if [[ $(netstat -rn -f inet | egrep ^.*$1 | wc -l) -ge 1 ]]; then
  VPN_NET=$(pfctl -t subnets -T show)
  for ITEM in $VPN_NET
  do
route add -net $ITEM -interface $vpnIf
  done
route change -net 0.0.0.0/0 -interface $defIf

construct
Code Select
VPN_NET=$(pfctl -t subnets -T show) allows you to pass the contents of the "subnets" alias to the script
Print
Go Up Pages1
User actions