Re: Seriously confused about linux routing

melement@xxxxxxxxx wrote:
Ok, so, what I'm trying to do is to route between to 10.0.0.0/16
subnets.

There are two computers, connected via VPN, that are involved with the
routing.

Server 1: IP Address 10.10.0.1 and 192.168.1.1
Server 2: IP Address 10.15.0.2 and 192.168.1.2

The VPN is connecting the computers via the 192. addresses. I'm
trying to route traffic originating at 10.10.0.0/16 and direct it to
the 10.15.0.0/16 subnet and vise versa, also, beyond that, I'm trying
to route all internet-bound traffic on 10.10.0.0/16 out through the
10.15.0.0/16 network.

I have enabled ip_forward on both servers ( echo 1 > /proc/sys/net/
ipv4/ip_forward and editted /etc/sysctl.conf for future reboots, etc.)

So far, for the routing tables, on Server 1:

192.168.1.0 0.0.0.0 255.255.255.0 U 0 0
0 eth1
10.10.0.0 0.0.0.0 255.255.0.0 U 0 0 0
eth0
10.15.0.0 192.168.1.2 255.255.0.0 UG 0 0 0
eth1
0.0.0.0 192.168.1.2 0.0.0.0 UG 0
0 0 eth0

On Server 2:

192.168.1.0 0.0.0.0 255.255.255.0 U 0 0
0 eth1
10.15.0.0 0.0.0.0 255.255.0.0 U 0 0 0
eth0
10.10.0.0 192.168.1.1 255.255.0.0 UG 0 0 0
eth1
0.0.0.0 10.15.0.1 0.0.0.0 UG 0 0
0 eth0

It appears that these two servers can communicate, and even access
computers on the other subnets, however, I'm having problems with the
internet connection from 10.10.0.0/16 routing out through the
10.15.0.0/16 (10.15.0.1 gateway specifically).

How can I get this to work?

On Server 1, the default route is now,

0.0.0.0 192.168.1.2 0.0.0.0 UG 0 0 0 eth0

So all Internet traffic is going to be sent to host
192.168.1.2, but it will be sent on the eth0
interface... and there is no such IP address on that
subnet. The 192.168.1.2 host is connected via the eth1
interface.

Just change the default route, which should be

0.0.0.0 192.168.1.2 0.0.0.0 UG 0 0 0 eth1

--
Floyd L. Davidson <http://www.apaflo.com/floyd_davidson>
Ukpeagvik (Barrow, Alaska) floyd@xxxxxxxxxx
.

Relevant Pages

  • Seriously confused about linux routing
    ... Server 1: ... The VPN is connecting the computers via the 192. ... So far, for the routing tables, on Server 1: ...
    (comp.os.linux.networking)
  • Re: Microsoft VPN Issue (Need Help)
    ... or post the routing table in the RRAS may help. ... Clients can connect externally with no problems and can ping, ... I have 5 domains and all are on different subnets 172.16.x.x 172.17.x.x ... How can i configure this server to enable them to ping and access the ...
    (microsoft.public.windows.server.networking)
  • Re: use windows2003 as router
    ... I need to connect 2 subnets in a non-productive environment (i.e ... a dedicated routing device would be too expensive so I would like to use a ... Especially when the server does additional tasks, ... I would like to use a windows2003 server with 2 network interfaces and ...
    (microsoft.public.windows.server.general)
  • Re: Win2k server network bridge
    ... different ip adresses on seperate subnets, ... otherwise you need routing, and to install RRAS ... > How do you bridge 2 NIC cards in a Windows 2000 server? ... > find anything on how to setup a simple bridge under Server 2000. ...
    (microsoft.public.win2000.networking)
  • Re: Vpn Server IP same as Client
    ... These NICs on your VPN work server need to be on different subnets in order ... Todd J Heron, MCSE ... Windows Server 2003/2000/NT; CCA ... I did notice that the static routing table on the work machine is blank ...
    (microsoft.public.windows.server.networking)