Linux - NetworkingThis forum is for any issue related to networks or networking.
Routing, network cards, OSI, etc. Anything is fair game.
Notices
Welcome to LinuxQuestions.org, a friendly and active Linux Community.
You are currently viewing LQ as a guest. By joining our community you will have the ability to post topics, receive our newsletter, use the advanced search, subscribe to threads and access many other special features. Registration is quick, simple and absolutely free. Join our community today!
Note that registered members see fewer ads, and ContentLink is completely disabled once you log in.
If you have any problems with the registration process or your account login, please contact us. If you need to reset your password, click here.
Having a problem logging in? Please visit this page to clear all LQ-related cookies.
Get a virtual cloud desktop with the Linux distro that you want in less than five minutes with Shells! With over 10 pre-installed distros to choose from, the worry-free installation life is here! Whether you are a digital nomad or just looking for flexibility, Shells can put your Linux machine on the device that you want to use.
Exclusive for LQ members, get up to 45% off per month. Click here for more info.
Here is the scenario: I'm running Slackware 10.2 on a Dell Poweredge 2850. It has two network cards, and I have the first (eth0) configured as my external for a web server. The other NIC (eth1), I need to configured to accept MySQL traffic (port 3306) from our internal network (172.16.x.x). In fact, only one specific IP address on the internal network needs access to eth1.
I am not sure how to set this up. This is not a router or bridge situation, since no traffic should pass from the external to the internal network, nor should internal traffic be allowed out.
I've tried a couple of iptables rules, but none work for me. An example is:
I should have given more details: by doesn't work, I mean that no computer on the 172.16 subnet can access the server. However, the server can ping itself, using the static IP addressed assigned to it on the 172.16 subnet. There doesn't seem to be any trouble with eth0, which has a "real" IP address. The web server is up and working, and I can SSH to it.
Netstat does show that port 3306 is listening, and I can connect to port 3306 using the "real" IP address on eth0. We had planned to keep all of the MySQL traffic on the internal network, thus the reason we are trying to get eth1 up and running.
LinuxQuestions.org is looking for people interested in writing
Editorials, Articles, Reviews, and more. If you'd like to contribute
content, let us know.