From: "Dan" <dan@34q.eu>
To: lartc@vger.kernel.org
Subject: FW: [LARTC] Routing public IP's through a gateway
Date: Mon, 15 Oct 2007 13:07:39 +0000 [thread overview]
Message-ID: <002701c80f2c$5d5c5910$18150b30$@eu> (raw)
In-Reply-To: <200710142307.12127.tim@timg.ws>
If understand the setup correctly based on previous emails, it looks like this:
[Internet] <-> [202.172.122.211 (eth1) {Gateway Machine} 202.172.122.74 (eth2)] <-> [202.172.122.75 (eth1) {Other Machine}]
So, according to your emails, your external (eth1) interface on the Gateway machine ** needs to be .209 not .211 or .210 ** (as this is where the ISP's 'router' is pointing the .72 subnet according to what you said), and you need to type echo 1 > /proc/sys/net/ipv4/ip_forward on the gateway machine. No route commands needed: the Gateway machine knows where the .72 subnet is, because it has an interface on it. The Gateway Machine's default gateway is set to your normal ISP's gateway.
Does that sound like your setup? If so, a few things come to mind - either your ISP is not routing .72/29 via .209, or maybe you have a firewall or routing rules in place, or you are using the wrong IP on the eth1 gateway interface.
Hope this helps!
Dan
-----Original Message-----
From: Tim Groeneveld [mailto:tim@timg.ws]
Sent: 15 October 2007 13:45
To: Dan
Subject: Re: [LARTC] Routing public IP's through a gateway
On Monday 15 October 2007 10:31:25 pm you wrote:
> Unless I have missed something in the question?
Well, these are the commands I issue on my gateway machine:
> ifconfig eth1 202.172.122.210 netmask 255.255.255.248
> ifconfig eth2 202.172.122.73 netmask 255.255.255.248
> route add -net 202.172.122.72 netmask 255.255.255.248 eth1
> route add default gw 202.172.122.209
> echo 1 > /proc/sys/net/ipv4/ip_forward
They all succeed and everything, but no outside Internet locations are accessable on .72/29 machines.
What is worse, running
> tcpdump -i eth1
Shows that the data from eth2 is being sent to the Internet, but there is no replies coming on eth2.
_______________________________________________
LARTC mailing list
LARTC@mailman.ds9a.nl
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
next prev parent reply other threads:[~2007-10-15 13:07 UTC|newest]
Thread overview: 9+ messages / expand[flat|nested] mbox.gz Atom feed top
2007-10-14 13:07 [LARTC] Routing public IP's through a gateway Tim Groeneveld
2007-10-14 20:47 ` Alex Samad
2007-10-15 2:51 ` Mohan Sundaram
2007-10-15 2:59 ` Mohan Sundaram
2007-10-15 12:14 ` Tim Groeneveld
2007-10-15 12:31 ` Dan
2007-10-15 13:07 ` Dan [this message]
2007-10-15 13:12 ` FW: " Tim Groeneveld
2007-10-15 14:10 ` Tim Groeneveld
Reply instructions:
You may reply publicly to this message via plain-text email
using any one of the following methods:
* Save the following mbox file, import it into your mail client,
and reply-to-all from there: mbox
Avoid top-posting and favor interleaved quoting:
https://en.wikipedia.org/wiki/Posting_style#Interleaved_style
* Reply using the --to, --cc, and --in-reply-to
switches of git-send-email(1):
git send-email \
--in-reply-to='002701c80f2c$5d5c5910$18150b30$@eu' \
--to=dan@34q.eu \
--cc=lartc@vger.kernel.org \
/path/to/YOUR_REPLY
https://kernel.org/pub/software/scm/git/docs/git-send-email.html
* If your mail client supports setting the In-Reply-To header
via mailto: links, try the mailto: link
Be sure your reply has a Subject: header at the top and a blank line
before the message body.
This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.