Re: [Cooker-firewall] Forwarding Problems

Wed, 09 May 2001 04:45:38 -0700 

Dave Lers <[EMAIL PROTECTED]> writes:

> Currently I have 
> 24.16.244.57/192.168.0.1 (server/gateway/firewall) -> 192.168.0/24
> (hub)
> 
> 192.168.0.1 has master DNS for dalrun.com as well as www and mail
> servers.
> 
> What I am trying to do is
> 24.16.244.57/192.168.0.1 (MS eth0) -> 192.168.0/24 (hub)
>                     /192.168.1.1 (MS eth2) -> 192.168.1.2 (server) domain/www/mail
> 
> I can get MS working fine on 192.168.0/24 but I cannot get
> 192.168.1.2 online. I have been able to ping out but no www out or
> in. I don't know about mail or domain. I set up tcp forwarding (->
> 192.168.1.2) for www/stmp/domain (and 1000 for webmin) and udp for
> domain. For now I set all DNS to external servers. I'm not sure what
> to look for. I don't know if trying to forward to my current
> gateway/firewall/server is causing grief. I've shut down the firewall
> on it and changed the external cards ip/gateway
> (24.16.244.57/24.16.244.1 -> 192.168.1.2/192.168.1.1). I don't know
> if it matters but I added eth2 after install (seemed to work fine,
> only thing I noticed was some errors in the log about eth3??), had to
> replace the pci vid card with an isa one to get the pci slot for
> eth2. 
> 
 
Hi there,

I have installed here 3 NIC cards on the firewall. Then I have connected a
linux client to each of the cards. So I have 2 NIC cards and one external
card. 
The internal cards are 192.168.2.84 fixed IP address and 192.168.3.87
dynamic IP obtained with a dhcp server configuration through teh web
frontend. 

The IP addresses of the firewall are: 
192.168.1.178 for external network (to some other test network I'm working
with)
192.168.2.178 and 192.168.3.178, all fixed IP addresses.


Through the firewall web configuration from 192.168.2.84 ( the fixed
client address), I did a port forwarding configuration:
- http web pages forwarding to 192.168.2.84 
- ssh forwarding through 192.168.3.87

and everything works fine.

The hardest thing was to detect, after the installation,  which physical
NIC coresponds to wich cable and IP address. But after that, this was ok.

cheers,
-- 
Florin                          http://www.mandrakesoft.com

Reply via email to