ClearFoundation

Hi,

I am trying to route some traffic using iproute2. The problem I find is that some process keeps resetting the "ip rule" table, so if I have:

[root@someserver /]# ip rule
0: from all lookup 255
32765: from all fwmark 0x1 lookup mytunel
32766: from all lookup main
32767: from all lookup default

After some time, some process (syswatch?) will turn it into:

[root@someserver /]# ip rule
0: from all lookup 255
32766: from all lookup main
32767: from all lookup default

I say I think it's syswatch because when booting the system the list of rules at the very begining is quite longer, until it suddenly is changed to this last one.

Does anyone have a clue where could I look to hardcode my custom rules? I haven't been succesful trying to modify syswatch (maybe I didn't look at the correct piece of code).

Thanks,

Are you sure it is syswatch? Could it possibly be a firewall restart causing a reset? If it is a firewall restart causing the problems, put the rules in /etc/rc.d/rc.firewall.local.

yes, I think you are right. Seems someone added some rules to the firewall without telling it and that seems to have caused the issue.

I'll put the ip rules right where you said. Thanks.

FWIW I also add the following to /etc/rc.d/rc.firewall.local:

This way I get a "Firewall restarted" message in /var/log/messages every time the firewall restarts. It can be useful for diagnostics.