[PLUG] Routing Query

Keith Morse kgmorse at mpcu.com
Mon Sep 16 17:35:24 UTC 2002 

On Mon, 16 Sep 2002, Richard Langis wrote:

> Hello everybody.
> 
> I've got a minor routing issue that I just can't quite seem to figure 
> out.  Here's my pathetic attempt at ascii art to illustrate the relevant 
> machines on the network:

May I make a design change recommendation?  
new

  internet------\
                 \                                          _______
                  \                            **          |      |
               |--------|                     /  \         |      |
               |firewall|---------------------|AP|     *--/laptop/
               |--------| 2.1                 |--|       /______/
         1.251      |                           2.x         2.3
                    |
                    |         |---------|
                    +---------|file serv|
                        1.252 |---------|

old

> 
> internet------\
>                 \                                          _______
>                  \                            **          |      |
>               |--------|     |---------|     /  \         |      |
>               |firewall|-----|file serv|-----|AP|     *--/laptop/
>               |--------|     |---------|     |--|       /______/
>                  1.251          1.252         2.x         2.3
> 
> 
> There's a switch between the firewall and the fileserver where most of 
> the other machines connect.  The fileserver also acts as a dhcp server, 
> and ssh connections from the outside are forwarded there as well.
> 
> Since the wireless AP is on eth1 on the fileserver, I put the wireless 
> network on the 192.168.2.0 network, whereas the wired network is 
> 192.168.1.0.  The default route is pointed at the firewall.  The laptop 
> can login to the fileserver, and ping the 1.252 interface from itself 
> (not only while logged in remotely).  It cannot, however, ping any other 
> host on the 1.x network.
> 
> Here's the output of 'route -n' on the fileserver:
> 
> 
> Kernel IP routing table
> Destination     Gateway         Genmask         Flags Metric Ref    Use 
> Iface
> 127.0.0.0       0.0.0.0         255.255.255.255 UH    0      0        0 lo
> 192.168.2.0     192.168.2.252   255.255.255.0   UG    0      0        0 eth1
> 192.168.2.0     0.0.0.0         255.255.255.0   U     0      0        0 eth1
> 192.168.1.0     192.168.1.252   255.255.255.0   UG    0      0        0 eth0
> 192.168.1.0     0.0.0.0         255.255.255.0   U     0      0        0 eth0
> 0.0.0.0         192.168.1.251   0.0.0.0         UG    0      0        0 eth0
> 
> I *think* it looks okay, but I could be totally wrong.  Everything I've 
> googled for doesn't really apply to my situation - most hits I've gotten 
> are people setting up ONE dual-homed machine (ie a firewall), not TWO on 
> the same network.
> 
> Anyone want to take a swing with the cluestick?
>

More information about the PLUG mailing list