1415491648 Q * bonbons Quit: Leaving
1415492362 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:10f6:4338:14c6:7a24
1415492843 Q * thierryp Ping timeout: 480 seconds
1415494801 Q * fstd Remote host closed the connection
1415494851 J * fstd ~fstd@xdsl-87-78-231-242.netcologne.de
1415495524 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:d534:166d:6370:903f
1415496008 Q * thierryp Ping timeout: 480 seconds
1415497762 J * thierryp ~thierry@home.parmentelat.net
1415498247 Q * thierryp Ping timeout: 480 seconds
1415498572 Q * undefined Quit: Closing object
1415498982 J * undefined ~undefined@00011a48.user.oftc.net
1415501361 J * thierryp ~thierry@home.parmentelat.net
1415501842 Q * thierryp Ping timeout: 480 seconds
1415504962 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:d18b:5c1b:1256:de90
1415505447 Q * thierryp Ping timeout: 480 seconds
1415508562 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:3cfb:a604:42be:ba99
1415509043 Q * thierryp Ping timeout: 480 seconds
1415512162 J * thierryp ~thierry@home.parmentelat.net
1415512647 Q * thierryp Ping timeout: 480 seconds
1415515761 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:151e:d625:641a:4ee7
1415516242 Q * thierryp Ping timeout: 480 seconds
1415519362 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:55b8:a2d1:9e4d:fddb
1415519843 Q * thierryp Ping timeout: 480 seconds
1415522541 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:dc35:d2a6:830:b517
1415524662 J * Ghislain ~aqueos@adsl1.aqueos.com
1415525499 J * bonbons ~bonbons@2001:a18:201:5a01:a97a:d070:9d10:e49e
1415532162 M * Guy- hi
1415532181 M * Guy- there is an "ip rule" related anomaly I'm not getting
1415532203 M * Guy- I have created a routing table called 'vserver' and set the default gw to 10.85.147.1 in it
1415532242 M * Guy- I used ip rule add from 10.85.147.0/24 lookup vserver to cause packets from these addresses to use .147.1 as their default gw
1415532262 M * Guy- "ip ro get ... from 10.85.147.whatever" returns the correct result
1415532286 M * Guy- but actually the kernel sends out the packets via a different interface (the one where the main default gw is)
1415532289 M * Guy- why?
1415532306 M * Guy- (ip ro get also returns the correct result from within one of the vservers)
1415532362 M * _are__ is there any nat involved?
1415532405 M * Guy- I have nat rules but none of them match these packets
1415532641 M * daniel_hozac does your route set the interface?
1415532667 M * Guy- daniel_hozac: not explicitly
1415532677 M * daniel_hozac does it work when you do?
1415532682 M * Guy- # ip ro sh table vserver
1415532682 M * Guy- default via 10.85.147.1 dev vsrv 
1415532684 M * Guy- I'll try
1415532850 M * Guy- daniel_hozac: no
1415532877 M * Guy- I flushed the vserver table and then did this:
1415532878 M * Guy- ip ro add default via 10.85.147.1 dev vsrv src 10.85.147.21 table vserver
1415532903 M * Guy- ip ro get still returns the correct result:
1415532904 M * Guy- vserver irc exec ip ro get 195.56.55.102 from 10.85.147.10
1415532904 M * Guy- 195.56.55.102 from 10.85.147.10 via 10.85.147.1 dev vsrv  cache 
1415532929 M * Guy- but the packets are sent out over the default gw of the host
1415532941 M * Guy- (with the correct source address though)
1415533066 M * _are__ why the 'src  10.85.147.21' and not just "ip route add default via 10.85.147.1 table vserver" and "ip rule add from 10.85.147.21 table vserver"?
1415533115 M * _are__ be aware, ip rule ls shows you the order of rules and every matching rule will be executed till some route matches
1415533225 N * _are__ _are_
1415533749 M * Guy- _are_: that was just a test to see if it made a difference; I first tried without 'dev' and 'src'
1415533763 M * Guy- _are__: and I know about IP rules but I have no others
1415533780 M * Guy- _are__: also, if the problem were with the rules, 'ip ro get' would return an incorrect reply
1415533906 M * Guy- interestingly, it works as expected if I mark the packets using netfilter in the OUTPUT chain of the mangle table
1415533916 M * Guy- and then use an ip rule that matches the fwmark, not the from address
1415533929 M * _are_ sorry then. routing cache perhaps? a single destination can only have a single route. if you target 195.56.55.102 on another connection as well, first one looks up the route, stuffs it into cache and this will be it till cache expires
1415533933 M * Guy- so my guess is that the routing decision on these packets is made before their source address is set
1415533970 M * Guy- _are_: the route cache was dropped in 3.7, and this is a 3.10 kernel (but I did ip ro flush cache, just to be sure, although again, ip ro get would return the wrong cached result too)
1415534968 Q * Aiken Remote host closed the connection
1415535642 Q * thierryp Remote host closed the connection
1415535739 M * _are_ I have not beed aware about the dropped routing cache, however, there must be some sort of (partial) replacement as definitly my fwmark-based policy routing stuff only takes 1 route at a time, despite different ports would be routed deifferently with 3.10.
1415537479 J * thierryp ~thierry@home.parmentelat.net
1415537964 Q * thierryp Ping timeout: 480 seconds
1415538001 Q * fstd Remote host closed the connection
1415538018 J * fstd ~fstd@xdsl-84-44-236-87.netcologne.de
1415539024 Q * fstd Read error: Connection reset by peer
1415539097 J * fstd ~fstd@xdsl-84-44-236-87.netcologne.de
1415539449 J * fstd_ ~fstd@xdsl-84-44-236-87.netcologne.de
1415539482 Q * fstd Read error: Connection reset by peer
1415539483 N * fstd_ fstd
1415540379 Q * ggherdov Ping timeout: 480 seconds
1415540450 J * ggherdov_ ~sid11402@id-11402.ealing.irccloud.com
1415540622 J * thierryp ~thierry@home.parmentelat.net
1415542838 Q * thierryp Remote host closed the connection
1415542859 J * thierryp ~thierry@home.parmentelat.net
1415543342 Q * thierryp Ping timeout: 480 seconds
1415544389 J * thierryp ~thierry@2a01:e35:2e2b:e2c0:71ca:d04:d319:b50a
1415546642 Q * mcp Quit: ZNC - http://znc.sourceforge.net
1415548775 J * mcp ~mcp@wolk-project.de
1415549883 Q * Hunger Ping timeout: 480 seconds
1415552943 J * Hunger hunger@proactivesec.com
1415563888 N * Bertl_oO Bertl
1415564294 J * Aiken ~Aiken@d63f.h.jbmb.net
1415569341 M * Bertl off to bed now ... have a good one everyone!
1415569351 N * Bertl Bertl_zZ
1415569418 Q * bonbons Quit: Leaving
1415573992 Q * clopez Remote host closed the connection
1415574013 J * clopez ~tau@neutrino.es