Subject: RE: Help with routing
From: Paul Friedrich (Paul.Friedrich@dispos.com)
Date: Mon Apr 09 2001 - 06:14:53 MDT
The -b switch means "b"idirectional.This rule should acctually create two
sets of rules. So if you do an ipchains -L -n you should see two rules. One
haveing a source of network A ans destination B and the other way round in
the second one. Also you wouldn´t be able to ping a host from one side if
there is no way to return an ICMP return package.
Hope this clarified things a little
See ya
Paul
> ----------
> From: Sean Riley
> Reply To: yellowdog-general@lists.yellowdoglinux.com
> Sent: Donnerstag, 5. April 2001 15:52 Uhr
> To: yellowdog-general@lists.yellowdoglinux.com
> Subject: Re: Help with routing
>
> I am not an ipchains guru, nor do I play one on TV ;-)
>
> The chain given though, references a -s (source) and -d (destination)
> network, and says to forward all traffic on all ports (some SWAGS at the
> switches, a quick man ipchains might help you)
>
> I would guess since you can now go this way it was taken correctly. ie
> ping
> 110 network from the 1 network.
>
> Add another chain but reverse the -s and -d addresses, that might be the
> issue.
>
> SR
>
> On Wednesday 04 April 2001 18:23, you wrote:
> > I don't mean to be such a newbie about this, but I haven't worked with
> > routing before.
> >
> > I added the ipchain provided. I can now ping the 128.129.110.253 from a
> > workstation on the 192.168.1.0 side, but I can't ping any machines on
> the
> > actual 128.129.110.0 network.
> >
> > Is there something else I am missing?
> >
> > When I execute a 'route' or 'ipchains -L' command on the router box it
> > takes a long time to execute.
> >
> > >ipchains -A forward -p any -b -s 192.168.1.0/24 -d 128.129.110.0/24 -j
> > >ACCEPT
> > >
> > >Which is the actual forwarding Rule for the Kernel!
> > >
> > >See ya
> > >
> > >PS Hope this is what you were looking for!
> > >
> > >> ----------
> > >> From: John Duarte
> > >> Reply To: yellowdog-general@lists.yellowdoglinux.com
> > >> Sent: Mittwoch, 4. April 2001 21:56 Uhr
> > >> To: yellowdog-general list
> > >> Subject: Help with routing
> > >>
> > >> I am trying to setup a router, using yellow dog, between two networks
> at
> > >> our location.
> > >> The two network IPs are:
> > >> 192.168.1.0
> > >> 128.129.110.0
> > >>
> > >> I have two NICs in my yellow dog box.
> > >>
> > >> I have turned on IP forwarding.
> > >>
> > >> My routing table goes like this:
> > >>
> > >> Destination Gateway Genmask Flags Metric
> Iface
> > >> 192.168.1.3 * 255.255.255.255 UH 0 eth0
> > >> 128.129.110.253 * 255.255.255.255 UH 0 eth1
> > >> 192.168.1.0 * 255.255.255.0 U 0 eth0
> > >> 128.129.110.0 * 255.255.255.0 U 0 eth1
> > >> 127.0.0.0 * 255.255.255.0 U 0
> lo
> > >> default 192.168.1.1 0.0.0.0 UG 0 eth0
> > >>
> > >> From the Yellow Dog box I can ping both networks, but I can't ping
> > >> across the networks from one workstation to another. I do have a
> route
> > >> to the router on my workstation. Doing a traceroute shows packets
> going
> > >> to the router but not crossing over.
> > >>
> > >> Anyone have any advise?
> > >>
> > >> ---------------------------
> > >> John Duarte
> > >> Key Lithograph
> > >> 2050 NW Vaughn St.
> > >> Portland, OR 97209
> > >> Ph: 503-222-9191
> > >> Fx: 503-248-9974
> > >> e-mail: john@keylitho.com
> > >> ---------------------------
> >
> > ---------------------------
> > John Duarte
> > Key Lithograph
> > 2050 NW Vaughn St.
> > Portland, OR 97209
> > Ph: 503-222-9191
> > Fx: 503-248-9974
> > e-mail: john@keylitho.com
> > ---------------------------
>
>
This archive was generated by hypermail 2a24 : Mon Apr 09 2001 - 06:21:16 MDT