[nmglug] iptables / routing question,
Andres Paglayan
andres at paglayan.com
Tue Dec 12 10:05:31 PST 2006
Hi,
I am trying to route all incoming trafic in eth0 (192.168.1.1)
directed to 192.168.50.0/24 through eth2 (192.168.50.1)
I did:
route add -net 192.168.50.0/24 gw 192.168.50.1
and my route -n looks like
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref
Use Iface
10.12.223.2 0.0.0.0 255.255.255.255 UH 0 0
0 tun0
192.168.50.0 192.168.50.1 255.255.255.0 UG 0 0
0 eth2
192.168.50.0 0.0.0.0 255.255.255.0 U 0 0
0 eth2
192.168.2.0 0.0.0.0 255.255.255.0 U 0 0
0 eth1
192.168.1.0 0.0.0.0 255.255.255.0 U 0 0
0 eth0
65.19.28.0 0.0.0.0 255.255.255.0 U 0 0
0 eth3
10.12.223.0 10.12.223.2 255.255.255.0 UG 0 0
0 tun0
0.0.0.0 65.19.28.1 0.0.0.0 UG 0 0
0 eth3
the machine also has: eth1 and eth3
2: eth0: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
inet 192.168.1.1/24 brd 192.168.1.255 scope global eth0
3: eth1: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
inet 192.168.2.1/24 brd 192.168.2.255 scope global eth1
4: eth2: <BROADCAST,MULTICAST,UP> mtu 1500 qdisc pfifo_fast qlen 1000
inet 192.168.50.1/24 brd 192.168.50.255 scope global eth2
5: eth3: <BROADCAST,UP> mtu 1500 qdisc htb qlen 1000
inet 65.19.28.123/24 brd 65.19.28.255 scope global eth3
I can ping 192.168.50.254 host from within the router,
but I cannot from any other pc in the subnet.
I think I should add an iptables fordwarding
(the iptables at this host is fairly complex and my guess is the
traffic is being dropped somewhere)
I can use some reading of man iptables,
but..., I know there's more than one lurker who will know the line,
Thank you all,
More information about the nmglug
mailing list