Hi All, This does work, and if I still had access to my scripts, I would post the solution here, but I was laid off on Friday.
Basically, I have three interfaces, Public Ethernet (eth0), Private Ethernet (eth1), and Private Tokenring (tr). eth0 was also aliased 5 times for access from multiple logical IP subnets that occupy the same physical network. This was done to facilitate teaching Microsoft courses. This machine masquraded both private segments out, and routed between the private networks. This was done with LRP 2.9.8, but should work with Dach as well. I followed the default settings to enable the the second private interface, made sure that ipchains did not have a deny rule for the route, and added a route between the locations. This could have all been done the network_direct.conf file under LRP 2.9.8. It was actually quite painless, and should work equally well with Dachstein. If I can get ahold the config file, I will make it available here. Cheers edt ----- Original Message ----- From: "Jack Coates" <[EMAIL PROTECTED]> To: "David B. Cook" <[EMAIL PROTECTED]> Cc: <[EMAIL PROTECTED]> Sent: Tuesday, January 08, 2002 12:02 AM Subject: Re: [Leaf-user] multi homed router & routing > On Mon, 7 Jan 2002, David B. Cook wrote: > > > Folks, I'm still confused about the internal routing on a Dachstein FW > > with 2 internal interfaces. I simply want to route between eth1 & eth2 > > freely while MASQ'ing both to the outside world. I do not want one to be a > > DMZ - they are both peer legs to the network. > > > > My internal addresses are from the reserved block. > > eth1_IPADDR=172.16.40.250 > > eth1_MASKLEN=24 > > eth1_BROADCAST=+ > > eth1_IP_SPOOF=YES > > eth1_IP_KRNL_LOGMARTIANS=YES > > eth1_IP_SHARED_MEDIA=NO > > eth1_BRIDGE=NO > > eth1_FAIRQ=NO > > > > eth2_IPADDR=172.16.50.250 > > eth2_MASQLEN=24 > > ... etc... > > eth2_ROUTES="172.16.40.255/24_via_172.16.40.250" > > ... etc... > > > > I have set the masqlen on both interfaces to 24 as I have heard is > > necessary to MASQ both interfaces to the outside. I'm not sure if this is > > part of my problem. I have added what I think is a route between eth1 & > > eth2 but obviously as I am writting this ... it does not work. Can > > somebody give me some pointers?? > > > > Thanks, dbc. > > -- > > > > David B. Cook, <[EMAIL PROTECTED]> > > The only "Windows" this software came close to had an "X" in front of it. > > > > I've been trying to get this same scenario to work off and on for about > six months; I am reasonably sure at this point that it is not possible > to do with LEAF or with a full distribution. > > Your best path to success is going to be two routers with floating > static routes and a routing daemon (e.g. zebra or routed) or a > ping-check script. > > -- > Jack Coates > Monkeynoodle: A Scientific Venture... > > > _______________________________________________ > Leaf-user mailing list > [EMAIL PROTECTED] > https://lists.sourceforge.net/lists/listinfo/leaf-user > _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
