[linux] netfilter a routing

Ing. Radomil Malec qm na zoznam.sk
Pátek Říjen 18 10:12:51 CEST 2002 

iptables -L >> vsetko ACCEPT (INPUT aj OUTPUT aj FORWARD)

----- Original Message ----- 
From:    jan.botto na level.sk
To:      qm na zoznam.sk
Sent:    Fri, 18 Oct 2002 09:57:58 +0200
Subject: Re: [linux] netfilter a routing

> 
> a mas povoleny packet forwarding? zda sa mi, ze to je ipv4_forward?
> j
> 
> 
>									   
>					      
>		      " Ing. Radomil					   
>					      
>		      Malec"		      To:     linux na lists.linux.sk 
>					      
>		      <qm na zoznam.sk>	      cc:			   
>					      
>		      Sent by:		      Subject:	   [linux]
> netfilter a routing				       
>		      linux-admin na list					   
>					      
>		      s.linux.sk					   
>					      
>									   
>					      
>									   
>					      
>		      18.10.2002 07:53					   
>					      
>		      Please respond					   
>					      
>		      to linux						   
>					      
>									   
>					      
>									   
>					      
> 
> 
> 
> 
> Prijemny piatok vsetkym
> 
> Potreboval by som pomoc s nasledujucim problem, ale poporiatku.
> 
> Topologia siete:
> 
> ____PC1____________	    ____SERVER_________
> eth1 - 192.168.65.1 ----- eth1 - 192.168.65.2      ____PC2___________
>			    eth0 - 192.168.1.1 ----- eth0 - 192.168.1.2
> Problem:
> 
> Ping z PC1 iba na SERVER (eth1 aj eth0) a z PC2 ties iba na SERVER (eth0
> aj
> eth1), ale nepingnem z PC1 PC2 (a naopak).
> 
> Routovacia tabulka na PC SERVER je:
> 
> Destination	  Gateway	  Genmask	  Flags Metric Ref    Use
> Iface
> 192.168.65.0	  *		  255.255.255.0   U	0      0	0
> eth1
> 192.168.1.0	  *		  255.255.255.0   U	0      0	0
> eth0
> 127.0.0.0	  *		  255.0.0.0	  U	0      0	0
> lo
> 
> PC1 aj PC2 maju default gateway 192.168.65.2 respektive 192.168.1.1
> 
> SERVER je RH 7.3 so standartnym kernelom 2.4.18 z distribucie a
> predpokladam
> ze "problem" bude niekde v:
> 
> Kernel NETWORKING:
>   x x [*]   IP: multicasting						   
> x
> x
> ? x x [*]   IP: advanced router					   
> x
> x
> ? x x [*]	IP: policy routing					   
> x
> x
> ? x x [*]	  IP: use netfilter MARK value as routing key		   
> x
> x
>   x x [*]	  IP: fast network address translation			   
> x
> x
>   x x [*]	IP: equal cost multipath				   
> x
> x
>   x x [*]	IP: use TOS value as routing key			   
> x
> x
>   x x [*]	IP: verbose route monitoring				   
> x
> x
>   x x [*]	IP: large routing tables				   
> x
> x
> ? x x [*]   IP: multicast routing					   
> x
> x
>   x x [*]	IP: PIM-SM version 1 support				   
> x
> x
>   x x [*]	IP: PIM-SM version 2 support				   
> x
> x
>   x x <M> WAN router							   
> x
> x
> 
> Prosim poradte ako rychlo rozbehnut routovanie, som tlaceny casom a
> pochopenie advanced routingu ties nieco potrebuje :). Predpokladam ze
> riesenie je v spravnych PREROUTING a POSTROUTING pravidlach v iptables
> ale
> zatial len tapem. Mohol by niekto potvrdit moje domienky a pripadne aj
> hodit
> do plena spravne iptables pravidla, ktore to rozbehnu?
> 
> S pozdravom RADO
> 
> (See attached file: mail)
>

Další informace o konferenci linux