Mailinglist Archive: opensuse (1606 mails)

< Previous Next >
Re: [opensuse] Cannot access two internal nets with SuSeFirewall2
  • From: wanakom@xxxxxxxxx
  • Date: Wed, 03 Sep 2008 12:27:31 +0100
  • Message-id: <48BE74A3.8030101@xxxxxxxxx>
Herbert Graeber wrote:
wanakom@xxxxxxxxx schrieb:
My server with Opensuse 11.0 has 3 network adapters, eth3 as external
interface (public IP), eth0 (172.26.0.1) and eth2 (192.168.1.1) as
internal.

I am trying to link the two internal nets (172.26.x.x and 192.168.1.x)
so users from both networks can use the printers in both nets.

My SuSeFirewall2 config is as follow:
- FW_DEV_EXT="any eth3"
- FW_DEV_INT="eth0 eth2"
- FW_ROUTE="yes"
- FW_MASQUERADE="yes"
- FW_MASQ_DEV="zone:ext zone:int"
- FW_MASQ_NETS="172.26.0.0/16,192.168.1.0/24
192.168.1.0/24,172.26.0.0/16 192.168.1.0/24 172.26.0.0/16"
- FW_PROTECT_FROM_INT="no"

From network 172.26.x.x I can ping up to eth2 but no futher, and the
same with network 192.168.2.x

You need the following option to link all subnets belonging to the same
class together:

FW_ALLOW_CLASS_ROUTING="yes"

Cheers,
Herbert

Hi Herbert.

Super. I have set the value to "int" and now everything is going smooth.

A full reading of the SuSeFirewall2 file is a must ;-)

Thanks a lot.


--
Louis

--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx

< Previous Next >