Welcome to Soft32 Linux Forums!
FAQFAQ    SearchSearch      ProfileProfile    Private MessagesPrivate Messages   Log inLog in

Route without masquerade

  
   Soft32 Home -> Linux -> Firewall RSS
Next:  Accepted mono-uia-atkbridge 1.0-1 (source i386)  
Author Message
Jonis_Maurin_Ceará

External


Since: Sep 23, 2009
Posts: 2



(Msg. 1) Posted: Wed Sep 23, 2009 11:20 am
Post subject: Route without masquerade
Archived from groups: linux>debian>maint>firewall (more info?)
Hi all.

I'm trying to get my Debian to route without masquerading, but didn't
work Sad

Eth0: 192.168.0.0/24
Eth1: 10.165.50.0/24

ipv4_forward enabled, routes are OK....but didn't work Sad

hesrv-lx01:/etc/dhcp3# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
10.165.50.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1
192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
0.0.0.0 10.165.50.5 0.0.0.0 UG 0 0 0 eth1


hesrv-lx01:/etc/dhcp3# iptables -L
Chain INPUT (policy ACCEPT)
target prot opt source destination

Chain FORWARD (policy ACCEPT)
target prot opt source destination
ACCEPT all -- anywhere anywhere

Chain OUTPUT (policy ACCEPT)
target prot opt source destination


I have an laptop on eth0 with IP 192.168.0.10, with i can ping
10.165.50.179 (server), but i can't ping another host on 10.165.50.X network
hesrv-lx01:/etc/dhcp3# ifconfig
eth0 Link encap:Ethernet HWaddr 00:23:7d:fd:63:5b
inet addr:192.168.0.1 Bcast:192.168.0.255 Mask:255.255.255.0
inet6 addr: fe80::223:7dff:fefd:635b/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:2630 errors:0 dropped:0 overruns:0 frame:0
TX packets:553 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:100
RX bytes:223415 (218.1 KiB) TX bytes:52652 (51.4 KiB)
Memory:fcde0000-fce00000

eth1 Link encap:Ethernet HWaddr 00:26:55:11:51:fb
inet addr:10.165.50.179 Bcast:10.165.50.255 Mask:255.255.255.0
inet6 addr: fe80::226:55ff:fe11:51fb/64 Scope:Link
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
RX packets:8513 errors:0 dropped:0 overruns:0 frame:0
TX packets:949 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:1000
RX bytes:1039298 (1014.9 KiB) TX bytes:89258 (87.1 KiB)
Interrupt:17

lo Link encap:Local Loopback
inet addr:127.0.0.1 Mask:255.0.0.0
inet6 addr: ::1/128 Scope:Host
UP LOOPBACK RUNNING MTU:16436 Metric:1
RX packets:8 errors:0 dropped:0 overruns:0 frame:0
TX packets:8 errors:0 dropped:0 overruns:0 carrier:0
collisions:0 txqueuelen:0
RX bytes:560 (560.0 B) TX bytes:560 (560.0 B)



What's wrong?

Tks!


--
To UNSUBSCRIBE, email to debian-firewall-REQUEST.TakeThisOut@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster.TakeThisOut@lists.debian.org
Back to top
Login to vote
Pascal Hambourg

External


Since: Jan 23, 2007
Posts: 17



(Msg. 2) Posted: Wed Sep 23, 2009 11:20 am
Post subject: Re: Route without masquerade [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
Hello,

Jonis Maurin Ceará a écrit :
>
> I'm trying to get my Debian to route without masquerading, but didn't
> work Sad
>
> Eth0: 192.168.0.0/24
> Eth1: 10.165.50.0/24
>
> ipv4_forward enabled, routes are OK....but didn't work Sad
>
> hesrv-lx01:/etc/dhcp3# route -n
> Kernel IP routing table
> Destination Gateway Genmask Flags Metric Ref Use
> Iface
> 10.165.50.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1
> 192.168.0.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
> 0.0.0.0 10.165.50.5 0.0.0.0 UG 0 0 0 eth1
[...]
> I have an laptop on eth0 with IP 192.168.0.10, with i can ping
> 10.165.50.179 (server), but i can't ping another host on 10.165.50.X network

What do you mean exactly ? Can you really not send a ping request to
10.165.50.X (and there is an error message) or do you just not receive
any reply ?

Do hosts in 10.165.50.0/24, and specially their gateway which seem to be
10.165.50.5, have a proper route to 192.168.0.0/24 via 10.165.50.179 ?
They need it to be able to send a reply.


--
To UNSUBSCRIBE, email to debian-firewall-REQUEST DeleteThis @lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster DeleteThis @lists.debian.org
Back to top
Login to vote
Benjamin Hackl

External


Since: Sep 23, 2009
Posts: 1



(Msg. 3) Posted: Wed Sep 23, 2009 11:20 am
Post subject: Re: Route without masquerade [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
On Wed, 23 Sep 2009 11:08:03 -0300
Jonis Maurin Ceará <listas DeleteThis @jonis.com.br> wrote:

> Eth0: 192.168.0.0/24
> Eth1: 10.165.50.0/24
>
> I have an laptop on eth0 with IP 192.168.0.10, with i can ping
> 10.165.50.179 (server), but i can't ping another host on 10.165.50.X


> What's wrong?
Your machine on 10.165.50.0/24 network need a route "back" to
192.168.0.0/24
I assume you have 10.165.50.5 as your default gw. This
router doesn't know what to do with packets to 192.168.0.0/24 and
discards them.


--
Freundliche Gruesse/Best Regards
Benjamin Hackl
IT/Administration

Media FOCUS Research Ges.m.b.H.
Maculangasse 8, 1220 Wien
Tel.-Nr.: +43 1 258 97 01-295
benjamin.hackl DeleteThis @focusmr.com
http://www.focusmr.com/


--
To UNSUBSCRIBE, email to debian-firewall-REQUEST DeleteThis @lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster DeleteThis @lists.debian.org
Back to top
Login to vote
Jonis_Maurin_Ceará

External


Since: Sep 23, 2009
Posts: 2



(Msg. 4) Posted: Wed Sep 23, 2009 11:20 am
Post subject: Re: Route without masquerade [Login to view extended thread Info.]
Archived from groups: per prev. post (more info?)
I can send ping, but didn't received any reply...
The problem was the gateway of device in 10.165.50.X network. I thought
the packet would go back in the same way that they came from, but it
doesn't.....always use the gateway of machine (in this case,
10.165.50.5, with doesn't have any route to 192.168.0.X)....anyway, tks
Jose and Pascal!
Since this is a test enviorment (with 2 gateways), eveything will work
in final project Smile

Tks
> What do you mean exactly ? Can you really not send a ping request to
> 10.165.50.X (and there is an error message) or do you just not receive
> any reply ?
>
> Do hosts in 10.165.50.0/24, and specially their gateway which seem to be
> 10.165.50.5, have a proper route to 192.168.0.0/24 via 10.165.50.179 ?
> They need it to be able to send a reply.
>
>
>


--
To UNSUBSCRIBE, email to debian-firewall-REQUEST.TakeThisOut@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster.TakeThisOut@lists.debian.org
Back to top
Login to vote
Display posts from previous:   
Related Topics:
IP Forwarding / Masquerade - Hi All, I have printed some documentation how how to set-up and configure my pc as a gateway for my local LAN, The..

how to install IP masquerade? - Hi, I use redhat 9.0 and i want to install ip masquerade in order to allow other local computers to access internet...

iptables->masquerade->port forwarding - I am having a problem getting port forwarding to work. Setup is internet to eth0 which is masquerading for the clients...

iptables, masquerade und atives FTP - Liebe NG! Ich muss auf einem PC der als FW und VPN-GW genutzt wird (Suse 8.2, Kernel 2.4.20, freeswan 1.9) iptables....

more than 1 default route - Hi, We are in the process of setting up an additional load balancer that site in front of a bunch of webservers. Does...

Redirection Route - I need to configure a redirection port on my linux box with the IPTABLES command... an incoming request is coming from...
       Soft32 Home -> Linux -> Firewall All times are: Pacific Time (US & Canada) (change)
Page 1 of 1

 
 You can post new topics in this forum
You can reply to topics in this forum
You cannot edit your posts in this forum
You cannot delete your posts in this forum
You cannot vote in polls in this forum

Categories:
 Windows
  Linux
 Mac
 PDA

[ Contact us | Terms of Service/Privacy Policy ]