Hi, Thanks for your answer.
My first description was actually a bit confusing, I looked at the thread, but it doesnt't look similar to my problem. Here is my detailled configuration : 4 ethernet cards : - 2 of them have ip address, one is conected to network A (eth0), the other one to network B (eth1), they are not part of the bridge, and are used to NAT servers on network A to allow them to communicate with network B. - 2 of them don't have ip address, are part of a bridge, both of them are part of network C, which is physically segmented with this bridge, they are going to be used for filtering connections of workstations behind the bridge (but with IP address of C network) to the rest of the C network. I must use a bridge because they are using DHCP and the firewall isn't their default router. Ip forwarding is on. The routing tables are : Net A : eth0 Net B : eth1 Workstations in C : eth2 Net C : eth3 - NAT/filtering between net A and net B is working very well when bridging is off - Bridging/filtering is working fine two. When bridging for net C is on AND a server on net A want to communicate with server on net B, the kernel crashes You might say : just use 2 servers (one for bridging, and one for NAT) ! But the problem is that I already have to use 2 servers : one working and one standby, so the downtime can be reduced to minumum. So I would have to put 4 servers ! and I would REALLY like to have only 2 ... The kernel doesn't log anything when it crashes.... thanks for your help Patrick Proy [EMAIL PROTECTED] Eric Low wrote: > I'm a little confused by your setup. Are the other two cards completely > seperate from the bridge? Do they have IP addresses? Try turning IP > forwarding on (echo 1 >/proc/sys/net/ipv4/ip_forward). Granted, DNAT'ing still > won't work, but it should stop it from crashing. See the following thread, the > last message might help explain it: > > http://www.math.leidenuniv.nl/pipermail/bridge/2002-February/001521.html > > In my setup with a simple bridge/netfilter patch/ebtables and an IP address on > one interface, it looks like the packets to be DNAT'ed are sent through the > loopback address. Probably ending up with the destination MAC address of the > bridge device. Anyhow. > > Eric > > --- Patrick Proy <[EMAIL PROTECTED]> wrote: > > Hello, > > > > I have : > > - a 2.4.18 kernel with netfilter on , iptables netfilter on > > - patched with bridge-nf-0.0.6-against-2.4.18.diff > > - I have installed bridge-utils-0.9.5-1.i386.rpm > > > > I have 4 ethernet cards : > > - 2 for the bridge, without IP address for a specific network > > - 2 others for filtering and making nat on another network > > > > The bridge works fine and I can put filters with iptable on it > > > > But when I am using nat with the two other NICs , the kernel crashes : > > kernel panic and I have to reboot the server > > Actually it crashes with the first connection using NAT > > > > When I use NAT with the bridge stopped, it works fine...... > > > > > > Any ideas ? > > > > Thanks a lot > > > > Patrick Proy > > [EMAIL PROTECTED] > > __________________________________________________ > Do You Yahoo!? > Try FREE Yahoo! Mail - the world's greatest free email! > http://mail.yahoo.com/ -- Patrick Proy EIC Telecom - Infrastructure [EMAIL PROTECTED] _______________________________________________ Bridge mailing list [EMAIL PROTECTED] http://www.math.leidenuniv.nl/mailman/listinfo/bridge
