From owner-freebsd-questions@FreeBSD.ORG Fri Feb 28 09:56:04 2014 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115]) (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits)) (No client certificate requested) by hub.freebsd.org (Postfix) with ESMTPS id 9BD00530 for ; Fri, 28 Feb 2014 09:56:04 +0000 (UTC) Received: from iruno.ripn.net (iruno.ripn.net [IPv6:2001:6d0:ffd9:306:194:226:71:76]) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by mx1.freebsd.org (Postfix) with ESMTPS id 5AD0C1727 for ; Fri, 28 Feb 2014 09:56:04 +0000 (UTC) Received: from magr by iruno.ripn.net with esmtp (RIPN) id 1WJKAj-000Fy1-Si for freebsd-questions@freebsd.org; Fri, 28 Feb 2014 13:56:01 +0400 Message-ID: <53105D2E.8010609@msk-ix.ru> From: "Mikhail A. Grishin" Organization: MSK-IX MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: Policy-based routing on SRC MAC criteria Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit X-Virus-Scanned: ClamAV Date: Fri, 28 Feb 2014 13:56:01 +0400 X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.17 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 28 Feb 2014 09:56:04 -0000 Hi, We want to organize some measurement station for customers of IXP (Internet Exchange Point). To guarantee that ICMP replies get back to the same customer who send ICMP echo request, we need to do policy-based routing according SRC MAC address criteria. Is it possible and how? SRC IP not a solution because our customers exchange based on BGP protocol and can be assymetry. P.S. Typical IXP - layer 2 network. All connected members get IP from our peering IP network. All members controlled by MAC address of the device that organize BGP sessions with other customers (typically that device is L3 router). -- Best regards, Mikhail A. Grishin