hi, i'm quite new to admin world, I've setup a gateway between 2 network branchs, and i don't get where my error is.... the branch one sees the branch 2 but the branch 2 doesn't see the branch one.... my rules mustn't be right for a 2 way connection... but why ??? the system is a SuSE 7.0 on a intel pc. #!/bin/sh echo 1 > /proc/sys/net/ipv4/ip_forward /sbin/ipchains -F input /sbin/ipchains -F output /sbin/ipchains -F forward /sbin/ipchains -P input ACCEPT /sbin/ipchains -P output ACCEPT /sbin/ipchains -P forward DENY /sbin/ipchains -A forward -j MASQ -s my.sub.net.one/24 -d 0.0.0.0/0 /sbin/ipchains -A forward -j MASQ -s my.sub.net.two/24 -d 0.0.0.0/0 I want both network to see each other fully... I start to flush all existing rules... thenmy default policies is to accept input and output whithout questionning and to forward from sub1 to everywhere and from sub2 to everywhere.... what's wrong with this ? why subnet2 doesn't see subnet 1 ?.... TIA.. Philip
hi, i'm quite new to admin world, welcome, but next time without HTML mail, thank you :) I've setup a gateway between 2 network branchs, and i don't get where my error is.... /sbin/ipchains -A forward -j MASQ -s my.sub.net.one/24 -d 0.0.0.0/0 /sbin/ipchains -A forward -j MASQ -s my.sub.net.two/24 -d 0.0.0.0/0 I want both network to see each other fully... Masquerading is to hide a network behind an IP. this will never work, if you want the two subnets to see each other. You have to set the linux machine as "default gateway" on all clients and enable ip forwarding, that's enough.
hth Markus -- _____________________________ /"\ Markus Gaugusch ICQ 11374583 \ / ASCII Ribbon Campaign markus@gaugusch.at X Against HTML Mail / \
participants (2)
-
admin@cat-thrower.com
-
Markus Gaugusch