On Saturday 15 June 2002 1:35 pm, Kumar wrote: > Hi , > > Have installed RedHat 7.2 ( kernel -2.4.7-10) with two nic's. One is having > an internal IP and the other a public IP. There are no Ipchains/ IPtables > rules nor there are any nating rules. Have enabled IP forwarding. The > default gateway of the internal IP is the public ip, right ?
No, the default gateway of the internal LAN (I assume you meant the machines on the internal network) is the private (internal) IP of the firewall. A gateway must always be an address on the local network of whatever machine you're talking about the gateway of. > When some other machine is connected to the network giving the same ip, > there is no problem. Um, what do you mean by that ? Two machines having the same IP address !? > I am facing the following problems : > a) The machine is not able to connect to the default gateway, but it can > connect to other machines on the same subnet. So it is not ale to connect > to the internet, since it canot connect to the gateway. See my advice above. > b) comand like > route, netstat takes exceptionally long time to display the output. I know > we can always do route -n to disable the dns lookup, bu in the other linux > boxes it does nto take his much time. I expect you've got an external DNS server listed, and because the gateway's not correct, the machine can't contact the DNS server. > Here's the output of the ifonfig comand : > > eth1 Link encap:Ethernet HWaddr 01:00:21:DD:78:00 > inet addr: x.x.x.x Bcast:x.x.x.x Mask:x.x.x.x > UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1 > RX packets:1927 errors:0 dropped:0 overruns:0 frame:0 > TX packets:238 errors:0 dropped:0 overruns:0 carrier:0 > collisions:0 txqueuelen:100 > RX bytes:244135 (238.4 Kb) TX bytes:14454 (14.1 Kb) > Interrupt:3 Base address:0xd000 > > Here's the output of the route command : > > Kernel IP routing table > Destination Gateway Genmask Flags Metric Ref Use > default x.x.x.x 0.0.0.0 UG 0 0 > 0 eth1 Are the two sets of x.x.x.x the same here ? If they are, then that's your problem, and I think I misunderstood you above - I assumed you were talking about the default gateway for a machine on the internal LAN (which sould be set to 192.168.0.6 in your case). The default gateway for the firewall itself is your ISPs router - in other words, whatever is on the other end of the connection to eth1. Hope this helps, Antony.
