From mboxrd@z Thu Jan 1 00:00:00 1970 From: Batstru Subject: problems with alias Date: Fri, 16 Jul 2004 12:00:02 +0200 Sender: netfilter-admin@lists.netfilter.org Message-ID: <12a1fd421dcf7411b2acdd8a5da18f59@147.162.2.222> Reply-To: Batstru Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_12a1fd421dcf7411b2acdd8a5da18f59" Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: netfilter@lists.netfilter.org --b1_12a1fd421dcf7411b2acdd8a5da18f59 Content-Type: text/plain; charset = "iso-8859-1" Content-Transfer-Encoding: quoted-printable Hi all! I changed my server running redhat9 (kernel 2.4.x) with a new one with fedora core 2 (kernel 2.6.x): each one has 2 ethernet interfaces, so I c= opy network configuration fron rh9 to fc2=20 eth0 --> 192.168.1.254 / 255.255.255.0 eth1 --> 82.186.92.90 / 255.255.255.254 eth1:1 --> 82.186.92.91 / 255.255.255.254 eth1:2 --> 82.186.92.92 / 255.255.255.254 eth1:3 --> 82.186.92.93 / 255.255.255.254 eth1:4 --> 82.186.92.93 / 255.255.255.254 also, I copy and apply iptables configuration but it does not work well. now iptables doesn\'t apply rules to virtual interfaces, eth1...eth4. a line of my configiguration files is: -A INPUT -p tcp -m tcp -m state -d 82.186.92.91 --dport 20 --state NEW -j ACCEPT I tried different rules configuration but it still not work. can you help me?=20 -- Email.it, the professional e-mail, gratis per te: http://www.email.it/f =20 Sponsor: Lerboristeria.biz: per la tua bellezza e salute il miglior assortimento=20 di prodotti erboristici ed oggettistica online Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=3D2152&d=3D20040= 716 --b1_12a1fd421dcf7411b2acdd8a5da18f59 Content-Type: text/html; charset = "iso-8859-1" Content-Transfer-Encoding: quoted-printable

Hi all!

I changed my server running redhat9 (kernel 2.4.x) with a new one with= fedora core 2 (kernel 2.6.x): each one has  2 ethernet interfaces, = so I copy network configuration fron rh9 to fc2


eth0 --> 192.168.1.254 / 255.255.255.0
eth1 --> 82.186.92= .90 / 255.255.255.254
eth1:1 --> 82.186.92.91 / 255.255.255.254
= eth1:2 --> 82.186.92.92 / 255.255.255.254
eth1:3 --> 82.186.92.9= 3 / 255.255.255.254
eth1:4 --> 82.186.92.93 / 255.255.255.254

also, I copy and apply iptables configuration but it does not work wel= l.

now iptables doesn't apply rules to virtual interfaces, eth1...eth4.

a line of my configiguration files is:
-A INPUT -p tcp -m tcp -m st= ate -d 82.186.92.91 --dport 20 --state NEW -j ACCEPT

I tried different rules configuration but it still not work.


can you help me?


---= -
Email.it, the professional e-mail, gratis per te: clicca qui

Sponsor:
Lerboristeria.biz: per la tua bellezza e salute il miglior assortimento=20 di prodotti erboristici ed oggettistica online
Clicca qui
--b1_12a1fd421dcf7411b2acdd8a5da18f59-- From mboxrd@z Thu Jan 1 00:00:00 1970 From: Antony Stone Subject: Re: problems with alias Date: Fri, 16 Jul 2004 11:45:57 +0100 Sender: netfilter-admin@lists.netfilter.org Message-ID: <200407161145.57152.Antony@Soft-Solutions.co.uk> References: <12a1fd421dcf7411b2acdd8a5da18f59@147.162.2.222> Reply-To: netfilter@lists.netfilter.org Mime-Version: 1.0 Content-Transfer-Encoding: 8bit Return-path: In-Reply-To: <12a1fd421dcf7411b2acdd8a5da18f59@147.162.2.222> Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="us-ascii" To: netfilter@lists.netfilter.org On Friday 16 July 2004 11:00 am, Batstru wrote: > Hi all! > I changed my server running redhat9 (kernel 2.4.x) with a new one with > fedora core 2 (kernel 2.6.x): each one has 2 ethernet interfaces, so I > copy network configuration fron rh9 to fc2 > > eth0 --> 192.168.1.254 / 255.255.255.0 > eth1 --> 82.186.92.90 / 255.255.255.254 > eth1:1 --> 82.186.92.91 / 255.255.255.254 > eth1:2 --> 82.186.92.92 / 255.255.255.254 > eth1:3 --> 82.186.92.93 / 255.255.255.254 > eth1:4 --> 82.186.92.93 / 255.255.255.254 These combinations of address/netmask make no sense to me. The netmask 255.255.255.254 defines a 2-host subnet (basically, a point-to-point link, although those are normally specified using a full 32-bit all-1's netmask). Therefore if you have 82.186.92.90 on an interface with a 255.255.255.254 netmask, the only machine it will be capable of talking to at the other end of the cable is 82.186.92.91. Putting that address (.91), as well as several others which fall in different address ranges, onto the same phyical interface makes no sense to me. Regards, Antony. -- Anyone that's normal doesn't really achieve much. - Mark Blair, Australian rocket engineer Please reply to the list; please don't CC me. From mboxrd@z Thu Jan 1 00:00:00 1970 From: George Alexandru Dragoi Subject: Re: problems with alias Date: Fri, 16 Jul 2004 13:50:16 +0300 Sender: netfilter-admin@lists.netfilter.org Message-ID: <3063e504071603504d6e987c@mail.gmail.com> References: <12a1fd421dcf7411b2acdd8a5da18f59@147.162.2.222> Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <12a1fd421dcf7411b2acdd8a5da18f59@147.162.2.222> Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="us-ascii" To: Batstru Cc: netfilter@lists.netfilter.org Define "not work", give some error messages, what you expect and what you get ----- Original Message ----- From: Batstru Date: Fri, 16 Jul 2004 12:00:02 +0200 Subject: problems with alias To: netfilter@lists.netfilter.org Hi all! I changed my server running redhat9 (kernel 2.4.x) with a new one with fedora core 2 (kernel 2.6.x): each one has 2 ethernet interfaces, so I copy network configuration fron rh9 to fc2 eth0 --> 192.168.1.254 / 255.255.255.0 eth1 --> 82.186.92.90 / 255.255.255.254 eth1:1 --> 82.186.92.91 / 255.255.255.254 eth1:2 --> 82.186.92.92 / 255.255.255.254 eth1:3 --> 82.186.92.93 / 255.255.255.254 eth1:4 --> 82.186.92.93 / 255.255.255.254 also, I copy and apply iptables configuration but it does not work well. now iptables doesn't apply rules to virtual interfaces, eth1...eth4. a line of my configiguration files is: -A INPUT -p tcp -m tcp -m state -d 82.186.92.91 --dport 20 --state NEW -j ACCEPT I tried different rules configuration but it still not work. can you help me? ---- Email.it, the professional e-mail, gratis per te: clicca qui Sponsor: Lerboristeria.biz: per la tua bellezza e salute il miglior assortimento di prodotti erboristici ed oggettistica online Clicca qui From mboxrd@z Thu Jan 1 00:00:00 1970 From: Batstru Subject: Re: problems with alias Date: Fri, 16 Jul 2004 14:47:46 +0200 Sender: netfilter-admin@lists.netfilter.org Message-ID: Reply-To: Batstru Mime-Version: 1.0 Content-Type: multipart/alternative; boundary="b1_e70eba33cefa6ce158ba012abe8e1a82" Return-path: Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: To: netfilter@lists.netfilter.org --b1_e70eba33cefa6ce158ba012abe8e1a82 Content-Type: text/plain; charset = "iso-8859-1" Content-Transfer-Encoding: quoted-printable sorry..=20 the correct subnet mask is the following... eth0 --> 192.168.1.254 / 255.255.255.0 eth1 --> 82.186.92.90 / 255.255.255.248 eth1:1 --> 82.186.92.91 / 255.255.255.248 eth1:2 --> 82.186.92.92 / 255.255.255.248 eth1:3 --> 82.186.92.93 / 255.255.255.248 eth1:4 --> 82.186.92.93 / 255.255.255.248 marco --------- Original Message -------- Da: netfilter@lists.netfilter.org To: \"netfilter@lists.netfilter.org\" Oggetto: Re: problems with alias Data: 16/07/04 12:48 On Friday 16 July 2004 11:00 am, Batstru wrote: > Hi all! > I changed my server running redhat9 (kernel 2.4.x) with a new one with > fedora core 2 (kernel 2.6.x): each one has 2 ethernet interfaces, so I > copy network configuration fron rh9 to fc2 > > eth0 --> 192.168.1.254 / 255.255.255.0 > eth1 --> 82.186.92.90 / 255.255.255.254 > eth1:1 --> 82.186.92.91 / 255.255.255.254 > eth1:2 --> 82.186.92.92 / 255.255.255.254 > eth1:3 --> 82.186.92.93 / 255.255.255.254 > eth1:4 --> 82.186.92.93 / 255.255.255.254 These combinations of address/netmask make no sense to me. The netmask 255.255.255.254 defines a 2-host subnet (basically, a=20 point-to-point link, although those are normally specified using a full=20 32-bit all-1\'s netmask). Therefore if you have 82.186.92.90 on an interf= ace with a 255.255.255.254 netmask, the only machine it will be capable of=20 talking to at the other end of the cable is 82.186.92.91. Putting that address (.91), as well as several others which fall in different=20 address ranges, onto the same phyical interface makes no sense to me. Regards, Antony. --=20 Anyone that\'s normal doesn\'t really achieve much. - Mark Blair, Australian rocket engineer Please reply to the list; please don\'t CC me.=20 -- Email.it, the professional e-mail, gratis per te: http://www.email.it/f =20 Sponsor: I migliori vini a prezzi imbattibili e per ogni acquisto speciali omaggi= ! Clicca e prova la convenienza ora! Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=3D2624&d=3D20040= 716 --b1_e70eba33cefa6ce158ba012abe8e1a82 Content-Type: text/html; charset = "iso-8859-1" Content-Transfer-Encoding: quoted-printable sorry..
the correct subnet mask is the following...

eth0 --> 192.168.1.254 / 255.255.255.0
eth1 -->= 82.186.92.90 / 255.255.255.248
eth1:1 --> 82.186.92.91 / 255.255.2= 55.248
eth1:2 --> 82.186.92.92 / 255.255.255.248
eth1:3 --> 8= 2.186.92.93 / 255.255.255.248
eth1:4 --> 82.186.92.93 / 255.255.255= .248

marco

--------- Original Message --------
Da= : netfilter@lists.netfilter.org
To: "netfilter@lists.netfilter.org" &l= t;netfilter@lists.netfilter.org>
Oggetto: Re: problems with aliasData: 16/07/04 12:48


On Friday 16 July 2004 11:00 am, Batstru wrote:

> Hi all!
&= gt; I changed my server running redhat9 (kernel 2.4.x) with a new one wit= h
> fedora core 2 (kernel 2.6.x): each one has 2 ethernet interface= s, so I
> copy network configuration fron rh9 to fc2
>
>= ; eth0 --> 192.168.1.254 / 255.255.255.0
> eth1 --> 82.186.92= .90 / 255.255.255.254
> eth1:1 --> 82.186.92.91 / 255.255.255.25= 4
> eth1:2 --> 82.186.92.92 / 255.255.255.254
> eth1:3 --&= gt; 82.186.92.93 / 255.255.255.254
> eth1:4 --> 82.186.92.93 / 2= 55.255.255.254

These combinations of address/netmask make no sense= to me.

The netmask 255.255.255.254 defines a 2-host subnet (basically, a
point-to-point link, although those are n= ormally specified using a full
32-bit all-1's netmask). Therefore if = you have 82.186.92.90 on an interface
with a 255.255.255.254 netmask,= the only machine it will be capable of
talking to at the other end o= f the cable is 82.186.92.91.

Putting that address (.91), as well a= s several others which fall in different
address ranges, onto the sam= e phyical interface makes no sense to me.

Regards,

Antony.<= BR>
--
Anyone that's normal doesn't really achieve much.

- = Mark Blair, Australian rocket engineer

Please reply to the list;please don't CC me.



----
Email.it, the professional e-mail, gratis per te: clicca qui

Sponsor:
I migliori vini a prezzi imbattibili e per ogni acquisto speciali omaggi= ! Clicca e prova la convenienza ora!
Clicca qui
--b1_e70eba33cefa6ce158ba012abe8e1a82-- From mboxrd@z Thu Jan 1 00:00:00 1970 From: Jamie Pratt Subject: Re: problems with alias Date: Fri, 16 Jul 2004 09:05:29 -0400 Sender: netfilter-admin@lists.netfilter.org Message-ID: <40F7D299.8010803@nucdc.org> References: <12a1fd421dcf7411b2acdd8a5da18f59@147.162.2.222> Reply-To: jamie@nucdc.org Mime-Version: 1.0 Content-Transfer-Encoding: 7bit Return-path: In-Reply-To: <12a1fd421dcf7411b2acdd8a5da18f59@147.162.2.222> Errors-To: netfilter-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Id: List-Unsubscribe: , List-Archive: Content-Type: text/plain; charset="us-ascii"; format="flowed" To: netfilter@lists.netfilter.org Batstru wrote: > Hi all! > I changed my server running redhat9 (kernel 2.4.x) with a new one with > fedora core 2 (kernel 2.6.x): each one has 2 ethernet interfaces, so I copy > network configuration fron rh9 to fc2 > > eth0 --> 192.168.1.254 / 255.255.255.0 > eth1 --> 82.186.92.90 / 255.255.255.254 > eth1:1 --> 82.186.92.91 / 255.255.255.254 > eth1:2 --> 82.186.92.92 / 255.255.255.254 > eth1:3 --> 82.186.92.93 / 255.255.255.254 > eth1:4 --> 82.186.92.93 / 255.255.255.254 > also, I copy and apply iptables configuration but it does not work well. > now iptables doesn\'t apply rules to virtual interfaces, eth1...eth4. > a line of my configiguration files is: > -A INPUT -p tcp -m tcp -m state -d 82.186.92.91 --dport 20 --state NEW -j > ACCEPT > I tried different rules configuration but it still not work. > > can you help me? > -- > Email.it, the professional e-mail, gratis per te: http://www.email.it/f > > Sponsor: > Lerboristeria.biz: per la tua bellezza e salute il miglior assortimento > di prodotti erboristici ed oggettistica online > > Clicca qui: http://adv.email.it/cgi-bin/foclick.cgi?mid=2152&d=20040716 > > Have you tried to use the iproute2 suite for aliasing instead of ifconfig? I believe the ifconfig way is considered "deprecated". Then, specify your rules by interface and/or ip and it should work properly - maybe the old method only works in iptables using the interface name now? example: ## old ip aliasing ##/sbin/ifconfig eth0:0 192.168.0.1 ##/sbin/ifconfig eth0:1 192.168.0.2 ## New IP aliasing using ip tool from iproute2 package: /sbin/ip addr add 192.168.0.1/24 brd + dev eth0 /sbin/ip addr add 192.168.0.2/24 brd + dev eth0 regards, jamie