[plug] rooted routing :(
Ryan
ryan at is.as.geeky.as
Wed Apr 28 22:50:43 WST 2004
On Wed, 2004-04-28 at 22:00, bob wrote:
> Well I'm obviously missing a piece of the puzzle with regard to routing and
> network segments. Some pointers to where I can find clue sticks would be
> appreciated.
> What I can't even get going is
>
> ADSL
> |
> eth1 (192.168.1.x)
> Gateway/firewall
> eth0 (192.168.0.x)
> |
> hosts on LAN
Not immediately obvious why you are having dramas, maybe posting your
closest working output from 'route -n' and 'iptables -L' and 'iptables
-t nat -L' and 'ifconfig'
What subnet masks are you using btw?
Ensure your 'iptables -t nat -L' output is empty before you start
running your scripts so you can be sure there are no hang-overs from
past efforts.
I've done this on a box (which is currently in Kalgoorlie), maybe this
working example will help you:
ISDN Router (10.10.10.10/16)
|
eth1 (10.10.10.11/16)
Debian Box
eth0 (10.6.0.1/16)
|
Lan clients (10.6.x.x/16)
(the choice of subnets is due to other networks it tunnels to)
The ISDN router forwards EVERYTHING to 10.10.10.11
the routing table on the Debian box is:
Destination Gateway Genmask Flags Metric Ref Use
Iface
10.6.0.0 0.0.0.0 255.255.0.0 U 0 0 0
eth0
10.10.0.0 0.0.0.0 255.255.0.0 U 0 0 0
eth1
0.0.0.0 10.10.10.10 0.0.0.0 UG 0 0 0
eth1
That is, the default gateway is set to the ISDN router on eth1
The box has the stock standard rc-firewall-2.4 script version 0.70 with
the following set:
EXTIF="eth1"
INTIF="eth0"
And that's it.
(it then has a bunch of other iptables rules clamping it down)
Been working swimmingly for:
22:38:09 up 259 days, 9:28, 1 user, load average: 0.01, 0.03, 0.01
Ryan
More information about the plug
mailing list