To reach my target
Mikkel L. Ellertson
mikkel at infinity-ltd.com
Sun Jul 13 15:38:25 UTC 2008
Andrea Bencini wrote:
> I have a local Network (10.100.0.0/24) and my default gateway is a
> firewall (fw;eth0=10.100.0.1) with linux OS and netfilter.
> I must add a local subnet (10.6.70.0/24) under my local network.
> The local network (10.100.0.0/24) and local subnet (10.6.70.0/24) are
> connected by linux machine with netfilter
> (fwgw;etho=10.100.0.241,eth1=10.6.70.241).
> Clients in local network have firewall (10.100.0.1) as their default
> gateway.
> To send a packet from local network client to local subnet client I have
> added a static route in the firewall (10.100.0.1).
> route add -net 10.6.70.0 gw 10.100.0.241
>
> I run ping or ssh from local network client to local subnet client, but
> I cann't reach my target.
> What do I have to add or to change in my firewall machine (10.100.0.1)?
> Thanks
> Andrea
I take it that 10.100.0.241 is your gateway. Is that machine
configured to forward packets between subnets? Also, are the
machines on the 10.6.70.0 configured to use the Linux machine as
their gateway, at least for the 10.100.0.0 subnet?
It would cut down on network traffic if you added the route to the
10.6.70.0 subnet to all the machines on the 10.100.0.0 subnet. If
you are using a DHCP server, it should not be too hard to add the route.
I have never run a double gateway like this on the same network, so
there also may be more that is needed on the firewall machine.
Mikkel
--
Do not meddle in the affairs of dragons,
for thou art crunchy and taste good with Ketchup!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 189 bytes
Desc: OpenPGP digital signature
URL: <http://listman.redhat.com/archives/fedora-list/attachments/20080713/858255b2/attachment-0001.sig>
More information about the fedora-list
mailing list