[gentoo-user] Question about /etc/conf.d/net entry

Fri, 02 Feb 2007 09:12:37 -0800 

Hello list,

I've got my /etc/conf.d/net setup as follows:

# Interface Handler
modules=( "ifconfig" )

# eth0 (WAN) config
config_eth0=( "dhcp" )

# eth1 (LAN) config
config_eth1=( "192.168.1.1 netmask 255.255.255.0 broadcast 192.168.1.255" )
routes_eth1=( "192.168.1.0 via 192.168.1.1" ) # the idea here is that I wish
to have all traffic intended for hosts on 192.168.1.0 pass through
192.168.1.1.

Here's the output from ifconfig eth1:

eth1      Link encap:Ethernet  HWaddr 00:10:B5:0E:D6:E9
         inet addr:192.168.1.1  Bcast:192.168.1.255  Mask:255.255.255.0
         UP BROADCAST MULTICAST  MTU:1500  Metric:1
         RX packets:0 errors:0 dropped:0 overruns:0 frame:0
         TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
         collisions:0 txqueuelen:1000
         RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)
         Interrupt:10 Base address:0x6c00

This is my routing table:

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use
Iface
192.168.1.0     *               255.255.255.0   U     0      0        0 eth1
c-71-203-144-0. *               255.255.252.0   U     0      0        0 eth0
loopback        *               255.0.0.0       U     0      0        0 lo
default         c-71-203-144-1. 0.0.0.0         UG    0      0        0 eth0

One odd thing is, if I run mii-tool eth1, I get:
eth1: no link

eth1 is connected to my client machine via crossover cable (the wire scheme
A end is plugged into eth1, and the wire scheme b end is plugged into the
client machine)

I'm experiencing difficulty where my client can't get to the Internet (the
pages just time out), and I can't ping the gateway (192.168.1.1) from the
client. Also, from the firewall, I can't ping the client machine (
192.168.1.2).

Pings from the firewall to the client result in Destination Unreachable, and
if I remember correctly, pings from the client to the firewall just time
out.

I'm running shorewall (v 3.0.8), so I've tried shutting it down (shorewall
clear) to eliminate that as an option, but still not getting anywhere.

.config has the following entries in it, please let me know if there are
others that you need to see.

CONFIG_IP_ADVANCED_ROUTER=y
CONFIG_NETFILTER=y
CONFIG_IP_NF_NAT=y

Thanks,

Shawn

"Doing linear scans over an associative array is like trying to club someone
to death with a loaded Uzi."
--Larry Wall

Reply via email to