* non-masquerade routing
@ 2006-02-04 15:22 Chris Baechle
2006-02-04 16:26 ` non-masquerade routing (nfcan: addressed to exclusive sender for this address) Jim Laurino
0 siblings, 1 reply; 3+ messages in thread
From: Chris Baechle @ 2006-02-04 15:22 UTC (permalink / raw)
To: netfilter
I'm trying to setup a linux router for routing of public addresses
(non-nat / non-masquerade). I really don't know what this is called
(so googling hasn't helped much).
Example:
[Box A] ( 72.14.207.2) <---> (72.14.207.1) [Linux Router]
(66.94.234.1) <---> (66.94.234.2) [Box B]
Box A eth0 = 72.14.207.2
Linux Router eth0 = 72.14.207.1
Linux Router eth1 = 66.94.234.1
Box B eth0 = 66.94.234.2
I want to be able to connect from [Box A] to [Box B] and Box B web
server logs to show Box A's ip address (no natting); and if I do a
traceroute have the linux router show up as a hop (no bridging).
So is this something for iptables or am I barking up the wrong tree? I
checked out regular old route and iproute2 and didn't get much
further. Any point in the right general direction would be greatly
appreciated.
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: non-masquerade routing (nfcan: addressed to exclusive sender for this address)
2006-02-04 15:22 non-masquerade routing Chris Baechle
@ 2006-02-04 16:26 ` Jim Laurino
2006-02-04 18:11 ` Chris Baechle
0 siblings, 1 reply; 3+ messages in thread
From: Jim Laurino @ 2006-02-04 16:26 UTC (permalink / raw)
To: netfilter
On 2006.02.04 10:22, Chris Baechle - bangular@gmail.com wrote:
> I'm trying to setup a linux router for routing of public addresses
> (non-nat / non-masquerade). I really don't know what this is called
> (so googling hasn't helped much).
>
Um, perhaps this is called 'routing'.
Once the route is set up,
and routing is turned on - something like:
echo 1 > /proc/sys/net/ipv4/ip_forward
all the *firewall* needs is permission to forward the packets
from one network/interface to the other.
> Example:
>
> [Box A] ( 72.14.207.2) <---> (72.14.207.1) [Linux Router]
> (66.94.234.1) <---> (66.94.234.2) [Box B]
>
> Box A eth0 = 72.14.207.2
> Linux Router eth0 = 72.14.207.1
> Linux Router eth1 = 66.94.234.1
> Box B eth0 = 66.94.234.2
>
> I want to be able to connect from [Box A] to [Box B] and Box B web
> server logs to show Box A's ip address (no natting); and if I do a
> traceroute have the linux router show up as a hop (no bridging).
>
> So is this something for iptables or am I barking up the wrong tree? I
> checked out regular old route and iproute2 and didn't get much
> further. Any point in the right general direction would be greatly
> appreciated.
>
>
>
>
--
Jim Laurino
nfcan.x.jimlaur@dfgh.net
Please reply to the list.
Only mail from the listserver reaches this address.
^ permalink raw reply [flat|nested] 3+ messages in thread
* Re: non-masquerade routing (nfcan: addressed to exclusive sender for this address)
2006-02-04 16:26 ` non-masquerade routing (nfcan: addressed to exclusive sender for this address) Jim Laurino
@ 2006-02-04 18:11 ` Chris Baechle
0 siblings, 0 replies; 3+ messages in thread
From: Chris Baechle @ 2006-02-04 18:11 UTC (permalink / raw)
To: netfilter
> Um, perhaps this is called 'routing'.
>
> Once the route is set up,
> and routing is turned on - something like:
>
> echo 1 > /proc/sys/net/ipv4/ip_forward
>
> all the *firewall* needs is permission to forward the packets
> from one network/interface to the other.
>
Turns out the problem was just with a switch. Nothing to do with the linux box.
^ permalink raw reply [flat|nested] 3+ messages in thread
end of thread, other threads:[~2006-02-04 18:11 UTC | newest]
Thread overview: 3+ messages (download: mbox.gz follow: Atom feed
-- links below jump to the message on this page --
2006-02-04 15:22 non-masquerade routing Chris Baechle
2006-02-04 16:26 ` non-masquerade routing (nfcan: addressed to exclusive sender for this address) Jim Laurino
2006-02-04 18:11 ` Chris Baechle
This is a public inbox, see mirroring instructions
for how to clone and mirror all data and code used for this inbox