<div dir="ltr"><div class="gmail_default" style="font-family:monospace,monospace">I have CentOS 6 system - my tape backup server - that's connected to two different subnets ("100" and "158").</div><div class="gmail_default" style="font-family:monospace,monospace">There is also a router (actually a firewall) that routes between subnets "100" and "158".</div><div class="gmail_default" style="font-family:monospace,monospace">The server's default gateway is the router IP on subnet "158".</div><div class="gmail_default" style="font-family:monospace,monospace">The server's primary management IP address is the address on subnet "158".</div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div class="gmail_default" style="font-family:monospace,monospace">There are client systems on subnet "100", both management workstations and things to back up.</div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div class="gmail_default" style="font-family:monospace,monospace">When I try to SSH to the management IP in 158, the default behaviour in Linux is to send the reply back out the 'closest' interface, which is the "100" interface. This breaks things, because the router is actually a stateful firewall and I suddenly have asymmetric routing.</div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div class="gmail_default" style="font-family:monospace,monospace">If I "ifconfig down" the "100" interface, suddenly everything works again... except now a large volume of traffic has to run through the firewall.<br></div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div class="gmail_default" style="font-family:monospace,monospace">I'm trying to follow the various guidelines I've found for doing "ip rule" rules, but none of them seem to work.</div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div class="gmail_default" style="font-family:monospace,monospace">Has anyone here accomplished this sort of thing before?</div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div class="gmail_default" style="font-family:monospace,monospace"><br></div><div><div class="gmail_signature"><div dir="ltr"><div><div dir="ltr">
<table>
<tbody>
<tr>
<td width="141px"><img src="http://avant.ca/av/wp-content/uploads/avant_2014_email-e1391110991529.jpg" alt="Avant logo" width="141px" height="45px"></td>
<td style="font-family:helvetica;font-size:11pt"><b>Adam Thompson</b><br>
Senior Systems Administrator<br>
<b><span style="color:rgb(190,215,48)">voice:</span></b> 204.789.9596 x24 | <b><span style="color:rgb(0,171,188)">email:</span></b> <a href="mailto:athompson@avant.ca" target="_blank">athompson@avant.ca</a> | <b><span style="color:rgb(180,30,142)">web:</span></b> <a href="http://avant.ca/" target="_blank">avant.ca</a>
</td>
</tr>
</tbody>
</table>
</div></div></div></div></div>
</div>