SuSEFirewall2 - Primary Domain Controller
Hallo! I have SuSE7.3 and the SuSEFirewall2 with 3 Interfaces, ppp0/eth0 192.168.0.99 --> DSL/Internet eth1 192.168.1.254 --> Network1 ---> pdc, webserver, mailserver, Clients eth2 192.168.2.254 --> Network2 ---> Clients My PDC is in Network1. But i want to use my PDC for Network2, too! I can´t ping any Machine Names. (except of the M$ Machines in the same subnet) So what do i have to change in my firewall config except of Point22? Do i need a wins or DNS to get the name broadcasts working? Cheers, Mario Ohnewald p.s. I hope i have explained it well enought!
Hallo! I have SuSE7.3 and the SuSEFirewall2 with 3 Interfaces, ppp0/eth0 192.168.0.99 --> DSL/Internet eth1 192.168.1.254 --> Network1 ---> pdc, webserver, mailserver, Clients eth2 192.168.2.254 --> Network2 ---> Clients
My PDC is in Network1. But i want to use my PDC for Network2, too!
I can´t ping any Machine Names. (except of the M$ Machines in the same subnet) So what do i have to change in my firewall config except of Point22? Do i need a wins or DNS to get the name broadcasts working?
Cheers, Mario Ohnewald
p.s. I hope i have explained it well enought!
As far as good. You need to activate this in /etc/rc.config.d/firewall2.rc.config snip ------ # Allow same class routing per default? # REQUIRES: FW_ROUTE # # Do you want to allow routing between interfaces of the same class # (e.g. between all internet interfaces, or all internal network interfaces) # be default (so without the need setting up FW_FORWARD definitions)? # # Choice: "yes" or "no", defaults to "no" # FW_ALLOW_CLASS_ROUTING="yes" ------ snap thats activating routing between the internal interfaces Your Michael Appeldorn
hi I can reach all the ips in each net, so the routing seems to work, i can just not work with Names.
Hallo! I have SuSE7.3 and the SuSEFirewall2 with 3 Interfaces, ppp0/eth0 192.168.0.99 --> DSL/Internet eth1 192.168.1.254 --> Network1 ---> pdc, webserver, mailserver, Clients eth2 192.168.2.254 --> Network2 ---> Clients
My PDC is in Network1. But i want to use my PDC for Network2, too!
I can´t ping any Machine Names. (except of the M$ Machines in the same subnet) So what do i have to change in my firewall config except of Point22? Do i need a wins or DNS to get the name broadcasts working?
Cheers, Mario Ohnewald
p.s. I hope i have explained it well enought!
As far as good. You need to activate this
in /etc/rc.config.d/firewall2.rc.config
snip ------
# Allow same class routing per default? # REQUIRES: FW_ROUTE # # Do you want to allow routing between interfaces of the same class # (e.g. between all internet interfaces, or all internal network interfaces) # be default (so without the need setting up FW_FORWARD definitions)? # # Choice: "yes" or "no", defaults to "no" # FW_ALLOW_CLASS_ROUTING="yes"
Yes, i did that. I can reach all the ips in each net, so the routing seems to work, i can just not work with Names. Mario
Yes, i did that. I can reach all the ips in each net, so the routing seems to work, i can just not work with Names.
Mario
So put the ip of the pdc as wins-server in the settings of your clients in the other subnet :O) Yours Michael Appeldorn
Yes, i did that. I can reach all the ips in each net, so the routing seems to work, i can just not work with Names.
Mario
So put the ip of the pdc as wins-server in the settings of your clients in
Ahhh, now it works! Thanks a LOT! Mario the
other subnet :O)
Yours Michael Appeldorn
doooh! Well, not really solved yet ;( Working with names works now, but my w2k Client still cant find my PDC (when i wanna join my domain), but it can ping it "ping pdc". do i have to enable some ports for internal routing? Protect from Internal is off. Any Ideas? Cheers, Mario
Ahhh, now it works! Thanks a LOT!
Mario
Yes, i did that. I can reach all the ips in each net, so the routing seems to work, i can just not work with Names.
Mario
So put the ip of the pdc as wins-server in the settings of your clients in the other subnet :O)
Yours Michael Appeldorn
doooh! Well, not really solved yet ;( Working with names works now, but my w2k Client still cant find my PDC (when i wanna join my domain), but it can ping it "ping pdc". do i have to enable some ports for internal routing? Protect from Internal is off.
OK, some winX clients works in cinjunction with your PDC ? W2k uses 443 (or something there) instead of 137/138 ports. Whata PDC you've got. SAMBA ? There're some issues deal with W2K Michael Appeldorn
participants (2)
-
mario ohnewald
-
Michael Appeldorn