Well, I've been spending some more time this evening trying to diagnose the problem. I still think it's related to SuSEfirewall2 running on the gateway machine. Here is where I'm at:
on computer "server"
external interface: eth0 (DHCP from my ISP)
internal interfaces: eth1 (192.168.225.1) wlan0 (192.168.226.1)
wired network:
computer "optiplex" (192.168.225.2)
wireless network:
computer "omnibook" (192.168.226.2)
computer "zaurus" (192.168.226.3)
server has full access to the internet and will get a ping response from optiplex and zaurus but
not omnibook. When pinging omnibook I get no messages except the typical "100% packet loss."
optiplex has full access to the internet and wil get a ping response from server. No response from either of the wireless nodes.
omnibook has no access to the internet, and no ping response from any of the local nodes. It gives a "Destination Host Unreachable"
zaurus also does not have access to the internet, nor receives any ping response from any node.
Here's some of my configurations:
Code:
server:/home/jeff # route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.225.0 * 255.255.255.0 U 0 0 0 eth1
192.168.226.0 * 255.255.255.0 U 0 0 0 wlan0
host-69-145-48- * 255.255.240.0 U 0 0 0 eth0
link-local * 255.255.0.0 U 0 0 0 eth0
loopback * 255.0.0.0 U 0 0 0 lo
default host-69-145-48- 0.0.0.0 UG 0 0 0 eth0
Code:
optiplex:/home/jeff # route
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.225.0 * 255.255.255.0 U 0 0 0 eth0
link-local * 255.255.0.0 U 0 0 0 eth0
loopback * 255.0.0.0 U 0 0 0 lo
default server 0.0.0.0 UG 0 0 0 eth0
Code:
omnibook:/home/jeff # route
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.226.0 * 255.255.255.0 U 0 0 0 wifi0
192.168.226.0 * 255.255.255.0 U 0 0 0 wlan0
link-local * 255.255.0.0 U 0 0 0 wlan0
loopback * 255.0.0.0 U 0 0 0 lo
default server 0.0.0.0 UG 0 0 0 wlan0
Code:
root@collie:/# route
Destination Gateway Genmask Flags Metric Ref Use Iface
192.168.226.0 * 255.255.255.0 U 0 0 0 wlan0
default 192.168.226.1 0.0.0.0 UG 0 0 0 wlan0
the /etc/resolv.conf is identical on all four nodes, using the nameservers from my ISP
And here is my /etc/sysconfig/SuSEfirewall2 config from "server"
Code:
FW_DEV_EXT="eth-id-00:40:05:83:0c:4d"
FW_DEV_INT="eth-id-00:03:6d:13:df:b9 wlan-id-00:09:5b:68:4f:ea"
FW_DEV_DMZ=""
FW_ROUTE="yes"
FW_MASQUERADE="yes"
FW_MASQ_DEV="$FW_DEV_EXT"
FW_MASQ_NETS="0/0"
FW_PROTECT_FROM_INT="no"
FW_SERVICES_EXT_TCP=""
FW_SERVICES_EXT_UDP=""
FW_SERVICES_EXT_IP=""
FW_SERVICES_EXT_RPC=""
FW_SERVICES_DMZ_TCP=""
FW_SERVICES_DMZ_UDP=""
FW_SERVICES_DMZ_IP=""
FW_SERVICES_DMZ_RPC=""
FW_SERVICES_INT_TCP="5801 5901"
FW_SERVICES_INT_UDP="bootps"
FW_SERVICES_INT_IP=""
FW_SERVICES_INT_RPC=""
FW_SERVICES_DROP_EXT=""
FW_SERVICES_REJECT_EXT="0/0,tcp,113"
FW_SERVICES_ACCEPT_EXT=""
FW_TRUSTED_NETS=""
FW_ALLOW_INCOMING_HIGHPORTS_TCP=""
FW_ALLOW_INCOMING_HIGHPORTS_UDP=""
FW_FORWARD=""
FW_FORWARD_MASQ=""
FW_REDIRECT=""
FW_LOG_DROP_CRIT="yes"
FW_LOG_DROP_ALL="no"
FW_LOG_ACCEPT_CRIT="yes"
FW_LOG_ACCEPT_ALL="no"
FW_LOG_LIMIT=""
FW_LOG=""
FW_KERNEL_SECURITY="yes"
FW_STOP_KEEP_ROUTING_STATE="no"
FW_ALLOW_PING_FW="yes"
FW_ALLOW_PING_DMZ="no"
FW_ALLOW_PING_EXT="no"
FW_ALLOW_FW_SOURCEQUENCH=""
FW_ALLOW_FW_BROADCAST_EXT="no"
FW_ALLOW_FW_BROADCAST_DMZ="no"
FW_IGNORE_FW_BROADCAST_EXT="yes"
FW_IGNORE_FW_BROADCAST_INT="no"
FW_IGNORE_FW_BROADCAST_DMZ="no"
FW_ALLOW_CLASS_ROUTING=""
FW_CUSTOMRULES=""
FW_REJECT=""
FW_HTB_TUNE_DEV=""
FW_IPv6=""
FW_IPv6_REJECT_OUTGOING=""
FW_IPSEC_TRUST="no"
FW_ZONES=""
FW_USE_IPTABLES_BATCH=""
FW_LOAD_MODULES=""
I hope I'm giving enough information so that someone can help. If not, I'd be happy to post anything else.