Dear All,
i want to route some site to 10.10.10.16/28 Like youtube.com , facebook.com…
Configration:
[admin@fd] ip address> print
# ADDRESS NETWORK BROADCAST INTERFACE >
0 10.10.10.1/24 10.10.10.0 10.10.10.255 Real >
1 192.168.1.50/24 192.168.1.0 192.168.1.255 Real >
2 192.168.11.50/24 192.168.11.0 192.168.11.255 Real >
3 192.168.36.50/24 192.168.36.0 192.168.36.255 Real >
4 192.168.30.50/24 192.168.30.0 192.168.30.255 Real >
5 192.168.25.50/24 192.168.25.0 192.168.25.255 Real >
6 192.168.0.50/24 192.168.0.0 192.168.0.255 Real >
7 192.168.40.50/24 192.168.40.0 192.168.40.255 Real >
8 192.168.23.50/24 192.168.23.0 192.168.23.255 Real >
9 192.168.26.50/24 192.168.26.0 192.168.26.255 Real >
10 192.168.27.50/24 192.168.27.0 192.168.27.255 Real >
11 192.168.34.50/24 192.168.34.0 192.168.34.255 Real >
12 192.192.192.1/24 192.192.192.0 192.192.192.255 Fake >
13 192.168.41.50/24 192.168.41.0 192.168.41.255 Real >
14 192.168.42.50/24 192.168.42.0 192.168.42.255 Real >
15 192.168.43.50/24 192.168.43.0 192.168.43.255 Real >
16 192.168.44.50/24 192.168.44.0 192.168.44.255 Real >
17 192.168.45.50/24 192.168.45.0 192.168.45.255 Real >
18 192.168.46.120/24 192.168.46.0 192.168.46.255 Real >
19 192.168.47.50/24 192.168.47.0 192.168.47.255 Real >
20 192.168.48.50/24 192.168.48.0 192.168.48.255 Real
[admin@fd] > ip route print
39 A S 0.0.0.0/0 r 192.168.1.1 1 Real
40 A S 0.0.0.0/0 r 192.168.0.1 1 Real
41 A S 0.0.0.0/0 r 192.168.25.1 1 Real
42 A S 0.0.0.0/0 r 192.168.26.1 1 Real
43 A S 0.0.0.0/0 r 192.168.27.1 1 Real
44 A S 0.0.0.0/0 r 192.168.11.1 1 Real
45 A S 0.0.0.0/0 r 192.168.36.1 1 Real
46 A S 0.0.0.0/0 r 192.168.23.1 1 Real
47 A S 0.0.0.0/0 r 192.168.34.1 1 Real
48 A S 0.0.0.0/0 r 192.168.30.1 1 Real
49 A S 0.0.0.0/0 r 192.168.40.1 1 Real
50 A S 0.0.0.0/0 r 192.168.41.1 1 Real
51 A S 0.0.0.0/0 r 192.168.43.1 1 Real
52 A S 0.0.0.0/0 r 192.168.44.1 1 Real
53 A S 0.0.0.0/0 r 192.168.42.1 1 Real
54 A S 0.0.0.0/0 r 192.168.45.1 1 Real
55 A S 0.0.0.0/0 r 192.168.47.1 1 Real
56 A S 0.0.0.0/0 r 192.168.48.1 1 Real
57 A S 0.0.0.0/0 r 192.168.49.1 1 Real
58 A S 0.0.0.0/0 r 192.168.46.1 1 Rea
[admin@fd] ip firewall nat>
0 ;;; Group A
chain=srcnat routing-mark=Group A action=src-nat to-addresses=192.168.1.50 to-ports=0-65535
1 ;;; Group A1
chain=srcnat routing-mark=Group A1 action=src-nat to-addresses=192.168.11.50 to-ports=0-65535
2 ;;; Group A2
chain=srcnat routing-mark=Group A2 action=src-nat to-addresses=192.168.36.50 to-ports=0-65535
3 ;;; Group A3
chain=srcnat routing-mark=Group A3 action=src-nat to-addresses=192.168.30.50 to-ports=0-65535
4 ;;; Group A4
chain=srcnat routing-mark=Group A4 action=src-nat to-addresses=192.168.34.50 to-ports=0-65535
5 ;;; Group B1
chain=srcnat routing-mark=Group B1 action=src-nat to-addresses=192.168.27.50 to-ports=0-65535
6 ;;; Group B2
chain=srcnat routing-mark=Group B2 action=src-nat to-addresses=192.168.25.50 to-ports=0-65535
7 ;;; Group 14
chain=srcnat routing-mark=Group 14 action=src-nat to-addresses=192.168.49.50 to-ports=0-65535
8 ;;; Group B3
chain=srcnat routing-mark=Group B3 action=src-nat to-addresses=192.168.0.50 to-ports=0-65535
9 X ;;; Group 17
chain=srcnat routing-mark=Group 17 action=src-nat to-addresses=192.168.46.50 to-ports=0-65535
10 ;;; Group B4
chain=srcnat routing-mark=Group B4 action=src-nat to-addresses=192.168.26.50 to-ports=0-65535
11 ;;; Group B5
chain=srcnat routing-mark=Group B5 action=src-nat to-addresses=192.168.40.50 to-ports=0-65535
12 ;;; Group B6
chain=srcnat routing-mark=Group B6 action=src-nat to-addresses=192.168.23.50 to-ports=0-65535
13 ;;; Group B7
chain=srcnat routing-mark=Group B7 action=src-nat to-addresses=192.168.41.50 to-ports=0-65535
14 ;;; Group B8
chain=srcnat routing-mark=Group B8 action=src-nat to-addresses=192.168.42.50 to-ports=0-65535
[admin@fd] > ip firewall mangle
;;; GroupA
chain=prerouting src-address=10.10.10.0/29 action=mark-routing new-routing-mark=Group A passthrough=no
1 chain=forward protocol=tcp tcp-flags=syn routing-mark=Group A action=change-mss new-mss=1444
2 ;;; Group 12
chain=prerouting src-address=10.10.10.8/29 action=mark-routing new-routing-mark=Group 12 passthrough=no
3 chain=forward protocol=tcp tcp-flags=syn routing-mark=Group 12 action=change-mss new-mss=1444
4 ;;; Group A1
chain=prerouting src-address=10.10.10.16/28 action=mark-routing new-routing-mark=Group A1 passthrough=no
5 chain=forward protocol=tcp tcp-flags=syn routing-mark=Group A1 action=change-mss new-mss=1444
6 ;;; Group A2
chain=prerouting src-address=10.10.10.32/29 action=mark-routing new-routing-mark=Group A2 passthrough=no
7 chain=forward protocol=tcp tcp-flags=syn routing-mark=Group A2 action=change-mss new-mss=1444
8 ;;; Group 13
chain=prerouting src-address=10.10.10.40/29 action=mark-routing new-routing-mark=Group 13 passthrough=no
9 chain=forward protocol=tcp tcp-flags=syn routing-mark=Group 13 action=change-mss new-mss=1444
10 ;;; Group A3
chain=prerouting src-address=10.10.10.48/28 action=mark-routing new-routing-mark=Group A3 passthrough=no
11 chain=forward protocol=tcp tcp-flags=syn routing-mark=Group A3 action=change-mss new-mss=1444
12 ;;; Group A4
chain=prerouting src-address=10.10.10.64/28 action=mark-routing new-routing-mark=Group A4 passthrough=no
13 chain=forward protocol=tcp tcp-flags=syn routing-mark=Group A4 action=change-mss new-mss=1444
14 ;;; Group B1
chain=prerouting src-address=10.10.10.80/28 action=mark-routing new-routing-mark=Group B1 passthrough=no
15 chain=forward protocol=tcp tcp-flags=syn routing-mark=Group B1 action=change-mss new-mss=1444
16 ;;; Group B2
chain=prerouting src-address=10.10.10.96/29 action=mark-routing new-routing-mark=Group B2 passthrough=no
i treid address-list, dst-address,mangle
with many Version all not working
please i need to solve this problem also i want to route all ISP to Server cashe ISA
Best regards,