Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Colleagues, can someone help me sort out a routing table issue?
True confessions — I have never done this before. I've tried reading about route tables and remain confused.
Like most home networks, I have a private class-C LAN at 192.168.x.y.
My work wants me to add some parts in class-B 172.x.y.z to separate their stuff from my stuff and from "family" foolishness.
My Routing Issues:
How to route from 172.x.y.z through my 192.168.x.y LAN and out to the public internet?
How to allow select work-at-home devices to safely access work resources like printers, scanners and such?
Is this a problem for a Virtual LAN with managed switches?
Can this be accomplished by routing without pulling more house LAN wire? (The work stuff is not wifi enabled and would exist in a single room?)
I'd love someone to have great suggestions for how to proceed.
Don't be put off by the web 3.0 look. It is easily the best introduction to subnetting that I have ever seen. When I first met this reference, it was on a *.edu site. My guess is that, when he left the university,the author posted it to his personal site.
The only caveat I might add is that it likely does not address IPv6, as it looks just like it did when I first saw it.
> How to route from 172.x.y.z through my 192.168.x.y LAN and out to the public internet?
At home network, we can use a sub-network range inside Class B or C, such as 172.10.49.x or 192.168.168.x.
The 172.10.49.10 use static IP address and set default gateway to 192.168.168.254.
There are two NICs on 192.168.168.254. The if0 connect to home network and if1 connect to Internet.
The if0 use static IP address, 192.168.168.254.
sudo route add 172.10.49.10 dev if0
> How to route from 172.x.y.z through my 192.168.x.y LAN and out to the public internet?
At home network, we can use a sub-network range inside Class B or C, such as 172.10.49.x or 192.168.168.x.
The 172.10.49.10 use static IP address and add the following route.
sudo route add 172.10.49.0 netmask 255.255.255.0 gw 192.168.168.254 dev if0
There are two NICs on 192.168.168.254. The if0 connect to home network and if1 connect to Internet.
The if0 use static IP address, 192.168.168.254 and if1 use DHCP to get Internet gateway and DNS.
Most of the parts connected at 192.168.*.* are using wifi. Wire net connections are servers or printers or mesh network parts.
My work dictates the 172.xxx address block.
I propose to get everything talking to everything. That done, I can then start to wall things off.
It seems that it will be easier to work through open doors that to try and work around closed ones.
I'm running a three node mesh network for 192.xxx. The primary node is then connected to my ISP provided gateway. I expect to get another router/AP from work that will implement the 172.* LAN both wire and wifi.
Thank you for your reply,
~~~ 0;-Dan
Last edited by SaintDanBert; 02-10-2024 at 12:58 PM.
"If its not backed up to external media its not backed up."
I have documents and data files that I propose to capture to blueray media. Do you know how I might write multiple, separate sets of data as folder-trees or archives onto an blueray disk. {grin, blush} My brain grew up in the days of tape reels and disk "packet writers".
Could you please clarify your issue ? What does "My work wants me to add some parts" mean ?
Where is your home 192.168.x.y in the global net ? And where is their 172.x.y.z in the global net ?
Please reply michaelk's question.
Could you please clarify your issue ? What does "My work wants me to add some parts" mean ? Where is your home 192.168.x.y in the global net ? And where is their 172.x.y.z in the global net ? Please reply michaelk's question.
Consider the typical in-house LAN lives in a Class-C "private network" address space.
I want to introduce a Class-B "private network" into the same building -- my house.
With two networks in the house, I want to route between them. Thus the route table request.
The following might help you understand the topologies.
{public internet} =z= {ISP gateway using their DHCP assignment}
{gateway DHCP to LAN router} =z= {myRouter}
{myRouter DHCP to in-house LAN 192.168.x.y } =z= {wire connected servers and printers and switches}
=ZZ= {wifi connections to laptops, phones, etc}
=ZZ= {wifi connections to IOT} NOTE --- All switches are "managed" for when I learn how to configure a virtual LAN.
My work wants to add {work Router} beside {myRouter} serving {their IP address} in-house.
In part this will isolate their LAN from all IOT and "guest" devices on my in-house.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
