Sorry for my english.
I have zeroshell with loadbalance on 2 gateways. Zeroshell used to provide internet for few computers and for few voip phones connected to external asterisk server.
Once I turn off one of GW a few phones (not all) lost connection to asterisk server.
The conntrack table shows what difference between working and not working phones is in mark(fwmark). As I understand fwmark rule determine the outgoung interface. So not working phones was attached to interface with disabled GW.
After I execute a “Flush” at Connection Tracking page an not working phones successfuly connect to asterisk.
its very weird because we have the extact same issue!
we have an asterisk server running behind the zeroshell and the zeroshell acts as a fallover
when primary internet goes down, the asterisk trunk drops but doesnt reregister with the second internet because the zeroshell firewall connection tracking is showing its still trying to go out the internet thats off
we have to physically goto the zeroshell and click FLUSH and then it comes back up…