Mailinglist Archive: opensuse-security (334 mails)
| < Previous | Next > |
Re: [suse-security] Unwanted routing between subnets
- From: Guido Tschakert <guido.tschakert@xxxxxxxxxxx>
- Date: Tue, 09 Sep 2003 08:57:38 +0200
- Message-id: <3F5D79E2.7090402@xxxxxxxxxxx>
Holger Schletz wrote:
Since both subnets (192.168.. and 172.16..) are connected directly to the box, the router "knows" how to route between these subnets and does it ;-)
(Have a look at route -n)
I think the best (and easiest) way is to use the iptables-Rules as Bruno Leonhardt has written!
--
mit freundlichen Grüßen,
Guido Tschakert
___________________________________________________________________
SRC Security Research & Consulting GmbH
Graurheindorfer Str. 149a Tel: +49-228-2806-138
53117 Bonn Mobil:+49-160-3671422
http://www.src-gmbh.de Fax: +49-228-2806-199
Hi,Hello this box works at internetgateway, so routing is activated.
I'm running a router on SuSE 8.2 which connects 2 local subnets to the internet. The subnets run over the same NIC with virtual interfaces:
eth0, subnet 192.168.0.0/255.255.0.0 (call it subnet A)
eth0:1, subnet 172.16.0.0/255.255.0.0 (call it subnet B)
(Yes, this is a mess, but fixing up this naturally grown network topology might induce even more trouble.)
eth1 connects to the internet.
Since both subnets (192.168.. and 172.16..) are connected directly to the box, the router "knows" how to route between these subnets and does it ;-)
(Have a look at route -n)
I think the best (and easiest) way is to use the iptables-Rules as Bruno Leonhardt has written!
--
mit freundlichen Grüßen,
Guido Tschakert
___________________________________________________________________
SRC Security Research & Consulting GmbH
Graurheindorfer Str. 149a Tel: +49-228-2806-138
53117 Bonn Mobil:+49-160-3671422
http://www.src-gmbh.de Fax: +49-228-2806-199
| < Previous | Next > |