Slava Voronin writes:
> Like I understand you want use linux in your office as gateway to the
> internet, but this one on different subnet. So everything depends on how
> packet filtering confugured on box which is between your office and your
> personal box or do you have access to it ? You need to confugured box in
> office to get packets from outside and send it to your personal computer .
> Do you have access to your personal box from office write now? If yes, I
> think it's posseable. But it's better to see diagram.
OK, this is a little complicated, but I'll do my best.
_____________________
|Residential Network|---Residential Machine
| 128.128.182.0 | 128.128.182.215
---------------------
|
|
Residential Gateway
128.128.182.254
|
|
Microwave Transmitter
|
|
_____________________
| Microwave Subnet |
| 128.128.180.0 |
---------------------
|
|
_____________________
| Backbone Subnet |--- World Gateway --- Rest of
| 128.128.254.0 | 128.128.254.254 World!
---------------------
|
|
____________________
| Office Subnet |--- Office Machine
| 128.128.24.0 | 128.128.24.114
--------------------
OK, that's more or less the setup. Obviously there are various gateways
that have IPs in two subnets that I haven't listed. The two gateways that
are listed are the ones that carry out the filtering:
The Residential Gateway will not transmit packets into the
Residential Subnet unless they originate from the 128.128 network.
The World Gateway will not transmit packets to the world that
originate from the Residential Network (128.128.182).
The above restrictions are the only ones in place (that pertain to the
current situation, IPX filtering, and other subnets aren't a point of
concern at the moment).
This means that, yes, it is possible to telnet from the Residential Machine
(128.128.182.215) to the Office Machine (128.128.24.114) and vice versa.
Alan Kennedy writes:
> Well this appears to be a routing problem then. You need to show us how
> the network is setup. Give some fake numbers but it is probably a routing
> problem. Show us what kind of commands you are using to setup routing.
OK, the residential machine has the following default routing table:
Destination Gateway Genmask Flags Metric Ref Use Iface
128.128.182.0 * 255.255.255.0 U 0 0 1 eth1
127.0.0.0 * 255.0.0.0 U 0 0 1 lo
default 128.128.182.254 0.0.0.0 UG 0 0 0 eth1
I then delete the default route
# route del default
Destination Gateway Genmask Flags Metric Ref Use Iface
128.128.182.0 * 255.255.255.0 U 0 0 1 eth1
127.0.0.0 * 255.0.0.0 U 0 0 1 lo
Then, I add in a route to the 128.128.0.0 network
# route add -net 128.128.0.0 gw 128.128.182.254
Destination Gateway Genmask Flags Metric Ref Use Iface
128.128.182.0 * 255.255.255.0 U 0 0 4 eth1
128.128.0.0 128.128.182.254 255.255.0.0 UG 0 0 0 eth1
127.0.0.0 * 255.0.0.0 U 0 0 1 lo
At this point I am able to telnet to any machines within the uni network,
including the Office Machine.
Then I add in a default route to the Office Machine
# route add default gw 128.128.24.114
Whereupon I receive the error:
SIOCADDRT: Network is unreachable
As an alternative, I first added a route directly to the Office Machine
# route add -host 128.128.24.114 gw 128.128.182.254
Destination Gateway Genmask Flags Metric Ref Use Iface
128.128.24.114 128.128.182.254 255.255.255.255 UGH 0 0 0 eth1
128.128.182.0 * 255.255.255.0 U 0 0 8 eth1
128.128.0.0 128.128.182.254 255.255.0.0 UG 0 0 0 eth1
127.0.0.0 * 255.0.0.0 U 0 0 1 lo
Then attempted to specify the default route as above
# route add default gw 128.128.24.114
Whereupon I receive the same error:
SIOCADDRT: Network is unreachable
I get the feeling that I am making a foolish routing mistake, but it all
seems right to me. :-)
Thanks all!
--
Damion Milliken University of Wollongong
Unofficial Shadowrun Guru E-mail: [EMAIL PROTECTED]
-----BEGIN GEEK CODE BLOCK-----
Version: 3.12
GE d- s++:-- a22 C++$ US++$>+++ P+ L++>+++ E- W+$>++ N++ o@ K- w+(--)
O-@ M-- V- PS+ PE Y+>++ PGP-@>++ t+ 5 X++>+++ R+(++) !tv(--) b++(+++)
DI+++ D G+ e++>++++$ h(*) r(--) y--
------END GEEK CODE BLOCK------
---------------------------------------------------------------------
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, e-mail: [EMAIL PROTECTED]
For daily digest info, email [EMAIL PROTECTED]
