Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Hello everyboy
i have a lan with this config :
router-----firewall/gateway-----switch-----LAN
i have 2 NICs on my firewall/gateway
i did this steps :
1/ compil the kernel with the forwarding/netfilter options
2/ set ip_forward=yes
3/ set */ipv4/ip_forward to the 1 value
add my LANs machines name to /etc/hosts
i Set my 2 NICs addresse like this :
1 private IP 192.192.0.3 related to the router (because my lan is linked to an other lan and not to the internet )
1 private network 192.168.0.1 related to my private LAN
i set all machine gateway to 192.168.0.1 as default gateway
well all what i want to do is to be able to see my machines (LAN) from the other network (throught the wan) , and i want to know if all what i should do is to route
until now my network machines can ping my 2 firewall interfaces BUT CANT GO MORE AWAY !
i d like to know why
thanx
i dont wanna use masq cause i have to be able to see my machines from outside the network (it's 2 network in reality there is no access to the internet right now )
LAN2--Router=======router-----firewall/gateway-----switch-----LAN1
i have to be able to ping lan1 from lan 2 and the inverse !
>i have to be able to ping lan1 from lan 2 and the inverse !
This could be made to work. You may need to do some configuration on the other lan as well.
Are things currently configured so that if you connect the router directly to the switch the two LAN's are linked? I assume not.
I assume that the 192.168.0.x block of addresses is not being used on the other lan. If you have a netmask of 255.255.255.0 then your machines will assume that other 192.168.0.x machines are local and will try to talk to them directly. Packets address to machines outside of 192.168.0.x will be sent to the default gateway.
As David_Ross says it will be easier if you have the two interfaces on the firewallbox in different subnets.
You need the PC's gateway set to the ip of that side of the firewall/gateway.
To do this without NAT/MASQ you then need the other lan configured correctly. The machines on the other lan need to have a route to send replys back to your machines. How to achieve that depends on how the other lan handles routing. You might need a default route to 192.168.0-1.x set on all the machines or you might have to do stuff with a routing protocol.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.
