[Masq] Re: IP Masquerading with ISDN Router

Sun, 8 Aug 1999 17:48:37 -0700 

/* HINT: Search archives @ http://www.indyramp.com/masq/ before posting! */



Jeff Sorenson <[EMAIL PROTECTED]> wrote:
>
> I'm trying to use IP Masquerading at home with my
> Ascend Pipleline 25 ISDN Router.  The ISDN Router gets
> its external address dynamically from my ISP.  Its
> internal address is set to 192.168.0.2.

Your network configuration isn't really set up right for masquerading,
then.

>               Windows Box
>               (192.168.0.5)
>                       |
> ISDN Router           |       Linux Box
> (192.168.0.2) -------hub-----(192.168.0.1)
>                       |
>                       |
>                 Macintosh Box
>                 (192.168.0.3)

In this arrangement, all of your machines are on the same subnet!  A
masq box will only masquerade traffic that is being forwarded through
it.  However, your masq box can tell that the other boxes on your
network can reach the ISDN router directly, so it rejects their attempts
to forward through it, as an invalid configuration.

Besides, you wouldn't want that configuration, anyway, because it means
all of your network traffic has to pass through the subnet twice, once
to get to the masq box, and again to get to the router.  These packets
have a higher chance of colliding with other packets on the network, as
well, so this configuration will cause a drop in performance, even if
you could get it working.

You would do better to add a second NIC to your masq box, and connect it
via a twisted cable (no hub required) directly to your ISDN router, so
that all traffic is forced to route through it.  Put your Wintel and Mac
boxes on a different subnet (192.168.1 instead of 192.168.0) and then
you will find traffic flows smoothly for all concerned.

-- 
   [EMAIL PROTECTED] (Fuzzy Fox)      || "Nothing takes the taste out of peanut
sometimes known as David DeSimone  ||  butter quite like unrequited love."
  http://www.dallas.net/~fox/      ||                       -- Charlie Brown


_______________________________________________
Masq maillist  -  [EMAIL PROTECTED]
Admin requests can be handled at http://www.indyramp.com/masq-list/
or email to [EMAIL PROTECTED]

PLEASE read the HOWTO and search the archives before posting.
You can start your search at http://www.indyramp.com/masq/
Please keep general linux/unix/pc/internet questions off the list.

Reply via email to