Update routing document

git-svn-id: https://shorewall.svn.sourceforge.net/svnroot/shorewall/trunk@2038 fbd18981-670d-0410-9b5c-8dc0c1a9a2bb
2024-12-22 14:20:40 +01:00 · 2005-04-10 18:57:39 +00:00 · 2005-04-10 18:57:39 +00:00 · 60a73ef02f
commit 60a73ef02f
parent b48290feaf
1 changed files with 25 additions and 1 deletions
--- a/Shorewall-docs2/Shorewall_and_Routing.xml
+++ b/Shorewall-docs2/Shorewall_and_Routing.xml
@ -179,4 +179,28 @@
    role="bold">other than as described in the previous section, there is no
    connection between Shorewall and routing</emphasis>.</para>
  </section>
-</article>
+
+  <section>
+    <title>Routing and Proxy ARP</title>
+
+    <para>There is one instance where Shorewall creates routing table entries.
+    When an entry in <filename>/etc/shorewall/proxyarp</filename> contains
+    "No" in the HAVEROUTE column then Shorewall will create a host route to
+    the IP address listed in the ADDRESS column through the interface named in
+    the INTERFACE column. <emphasis role="bold">This is the only case where
+    Shorewall directly manipulates the routing table</emphasis>.</para>
+
+    <para>Example:</para>
+
+    <para><filename>/etc/shorewall/proxyarp</filename>:</para>
+
+    <programlisting>#ADDRESS        INTERFACE       EXTERNAL        HAVEROUTE       PERSISTENT
+206.124.146.177 eth1            eth0            No
+#LAST LINE -- ADD YOUR ENTRIES BEFORE THIS ONE -- DO NOT REMOVE</programlisting>
+
+    <para>The above entry will cause Shorewall to execute the following
+    command:</para>
+
+    <programlisting><emphasis role="bold">ip route add 206.124.146.177 dev eth1</emphasis></programlisting>
+  </section>
+</article>