Hi, ok well I well confused. I have updated the routing table, as below is this what you mean? Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.2.0 192.168.2.1 255.255.255.0 UG 0 0 0 eth1 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 0.0.0.0 192.168.1.2 0.0.0.0 UG 0 0 0 eth0 the netwrok I have is: 192.168.2.0 --eth1--server--eth0-192.168.1.0 | | | 192.168.2.1 192.168.1.53 | | 192.168.1.2 router--wan To test this I'm using traceroute traceroute -S 192.168.2.1 <some outside address> and getting nothing, although I notice its resolving host names to IP addresses. Jeff On Wed, 2003-06-18 at 15:15, Alexander Klayman wrote:
You need to make the default gateway for your internal network to be 192.168.2.1. Then you need to enable routing and masquerading in /etc/sysconfig/SuSEfirewall2. Then make sure your machine is connected to the outside world. If you do not need masquerading (connecting to a private network), then just enable routing. The default gateway should still be the same for all your internal machines.
----- Original Message ----- From: "Jeff Hoare"
To: "SuSE Mailing List-e" Sent: Tuesday, June 17, 2003 10:42 PM Subject: Re: [SLE] routing question On Wed, 2003-06-18 at 13:55, Jerry Feldman wrote:
On 18 Jun 2003 12:43:34 +1200 Jeff Hoare
wrote: Hi, I have a small network setup but can't seem to get the routing right. I have tried reading the documentation, but its still not right. So I was wondering if anyone can provide some help.
The server has 2 ethernet cards setup: eth0 (192.168.1.53) points to an adsl router 192.168.1.2, which in turn points to the outside world.
eth1 (192.168.2.1) points to the internal network.
I would like to have the internal network on eth1 route through eth0 to the outside world.
Currently the routing table is configured as: 192.168.2.0 0.0.0.0 255.255.255.0 U 0 0 0 eth1 192.168.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 0.0.0.0 192.168.1.2 0.0.0.0 UG 0 0 0 eth0
I know this is not right, as the 192.168.2.0 network can't see the 192.168.1.0 network. I thought that by virtue of the fact both cards were on the same machine it would be able to route packets between them, but i guess not. What you want to do is NAT. This is supported in Linux by a feature called IP masquerading. IP Masquerading is part of the firewall. I suggest you look at the docs for SuSE Firewall.
The routing table above should allow all systems on your 192.168.2 communicate with the 192.168.1.53 machine, but not get out of your network. I tried to make 192.168.1.53 the default gw for the 192.168.2.0 network. However when I add the route it says "network unreachable". This is what I'm doing:
route add -net 192.168.2.0 netmask 255.255.255.0 gw 192.168.1.53 dev eth1
Jeff
-- Check the headers for your unsubscription address For additional commands send e-mail to suse-linux-e-help@suse.com Also check the archives at http://lists.suse.com Please read the FAQs: suse-linux-e-faq@suse.com