VLAN users unable to ping LAN users
Hi All,
my LAN is on 10.100.100.0/24 my CentOS 7.6 configs: eth0 -> 10.100.100.1/24 eth1.100 -> 192.168.100.0/24 VLAN users are able to ping to eth0 (10.100.100.1) but they are not able to ping any host in LAN. I tried to add a new static route to route-eth1.100 as follow: 10.100.100.0/24 via 10.100.100.1 dev eth1.100 but still no luck :( |
The address assigned to eth1.100 is not valid.
Post the complete picture using the output from these commands please. Code:
ip address Code:
ip route |
Quote:
|
ip address:
Code:
57: enp8s0.100@enp8s0: <BROADCAST,MULTICAST,UP,LOWER_UP> mtu 1500 qdisc noqueue state UP group default qlen 1000 enp8s0.100 is the VLAN (192.168.100.0/24) ip route Code:
default via 10.100.100.6 dev bond0 proto static metric 300 Code:
add /etc/sysctl.conf problem: VLAN users (192.168.100.0/24) are unable to ping any hosts in LAN (10.100.100.0/24) please help |
I tried below from centos:
[root@fw network-scripts]# traceroute -s 192.168.100.1 10.100.100.3 traceroute to 10.100.100.3 (10.100.100.3), 30 hops max, 60 byte packets 1 * * * 2 * * * 3 * * * 4 * * * 5 * * * 6 * * * 7 * * * 8 * * * 9 * * * 10 * * * and I thought it makes sense, since the source is not from 10.100.100.0/24 .. hmmm, is it possible to route to ifcfg-bond0 if the destination to 10.100.100.0/24? |
Hi..
I have better progress :) I use this: firewall-cmd --direct --add-rule ipv4 nat POSTROUTING 0 -o bond0 -j MASQUERADE firewall-cmd --drect --add-rule ipv4 filter FORWARD 0 -i vlan100 -o bond0 -j ACCEPT now, VLAN users are able to ping to LAN users.. but now, I have another problem.. my VLAN users are not unable to do DNS queries.. please help |
Quote:
How is DNS configured on the VLAN clients? |
Quote:
|
Only the first should take effect (with the lower metric)?
|
Quote:
|
Code:
sorry for typo (it should be my VLAN users are not able to do DNS queries) my VLAN 192.168.100.0/24 (enps8.100) DNS is: 10.100.100.6 (via bond0) as mentioned above, I made change to firewalld: Code:
firewall-cmd --direct --add-rule ipv4 nat POSTROUTING 0 -o bond0 -j MASQUERADE |
All times are GMT -5. The time now is 03:26 PM. |