Re: DNAT for two external NIC

All of lore.kernel.org
 help / color / mirror / Atom feed

From: Pascal Hambourg <pascal.mail@plouf.fr.eu.org>
To: netfilter@lists.netfilter.org
Subject: Re: DNAT for two external NIC
Date: Wed, 30 Aug 2006 00:00:02 +0200	[thread overview]
Message-ID: <44F4B8E2.7030409@plouf.fr.eu.org> (raw)
In-Reply-To: <007301c6cbb4$0aa38c00$4764a8c0@mhsystems.com>

Hello,

Mikhail a écrit :
>   Everything works fine if I use IP1 address but I was unable to get to the
> corresponding LAN machine through IP2. Ping requests are also not responded
> if they're made to IP2. They do reach eth2 and I can see them using tcpdump
> but then nothing goes out on any NIC. The same goes for TCP/IP requests -
> I've managed to trace them to the nat table PREROUTING chain but they could
> not be found in either INPUT or FORWARD chain of the mangle table. If I make
> default route through eth2 - everything starts working through that NIC and
> stops through eth1.

Maybe you need to disable rp_filter (reverse path filtering) on the 
interface that has not the default route.

sysctl -w net/ipv4/conf/eth2/rp_filter=0

next prev parent reply	other threads:[~2006-08-29 22:00 UTC|newest]

Thread overview: 8+ messages / expand[flat|nested]  mbox.gz  Atom feed  top
2006-08-29 21:42 DNAT for two external NIC Mikhail
2006-08-29 22:00 ` Pascal Hambourg [this message]
2006-08-30  7:15 ` Florent Guiliani
  -- strict thread matches above, loose matches on Subject: below --
2006-09-01  1:01 Mikhail
2006-09-01  6:32 Ming-Ching Tiew
2006-09-01  8:35 ` longraider
2006-09-01  9:32   ` Ming-Ching Tiew
2006-09-05  2:29 Ming-Ching Tiew

Reply instructions:

You may reply publicly to this message via plain-text email
using any one of the following methods:

* Save the following mbox file, import it into your mail client,
  and reply-to-all from there: mbox

  Avoid top-posting and favor interleaved quoting:
  https://en.wikipedia.org/wiki/Posting_style#Interleaved_style

* Reply using the --to, --cc, and --in-reply-to
  switches of git-send-email(1):

  git send-email \
    --in-reply-to=44F4B8E2.7030409@plouf.fr.eu.org \
    --to=pascal.mail@plouf.fr.eu.org \
    --cc=netfilter@lists.netfilter.org \
    /path/to/YOUR_REPLY

  https://kernel.org/pub/software/scm/git/docs/git-send-email.html

* If your mail client supports setting the In-Reply-To header
  via mailto: links, try the mailto: link

Be sure your reply has a Subject: header at the top and a blank line before the message body.

This is an external index of several public inboxes,
see mirroring instructions on how to clone and mirror
all data and code used by this external index.