boy I don't know if stuff has changed or what, but used to be SINGLE Network firewall mean only one lan and one external interface no wonder you have a problem with SINGLE NETWORK on MULTIpul eth interfaces... have you ever considered useing only eth0 for the inside lan as the gateway (192.168.0.1) and eth1 as the (dhcp?) outside lan? and maybe consder a complete distro custom setup as a firewall machine to get all these other ETH2, ETH3, ppp0,ppp1,ppp2, running at the same time?
On Tuesday 28 May 2002 04:02 pm, you wrote: > Yes. The ETH interfaces are the gateways for the respected LAN > segments. I do have RIPv2 running on the network and all of the > routers "see" the other subnets. Like I said, I can SSH into the > firewall from the IP Address 192.168.150.1, do what I need to do on > the firewall, but I cannot get outside the firewall. Is there a > script or config file you would like me to paste so you can look at > it to see if there is a config problem? I haven't made any changes > to any of the script files, except the init.rc (or the rc.local, > which ever is the very last script to run during bootup) which I has > to add the static routes to the other networks. Now, before anyone > else jumps, I did add the static routes manually BEFORE I modified > the init.rc script, and I was able to access the firewall via HTTPS > and SSH, but I was still not able to get out to the Internet. > > Thanks, > > Chris > > -----Original Message----- > From: [EMAIL PROTECTED] > [mailto:[EMAIL PROTECTED]] On Behalf Of Dennis Myers > Sent: Tuesday, May 28, 2002 12:12 PM > To: [EMAIL PROTECTED] > Subject: Re: [newbie] SNF 7.2 problems. > > On Tuesday 28 May 2002 12:41 pm, you wrote: > > Does anyone have any good FAQ links for the Mandrake SNF 7.2 build, > > other than the one on Mandrake's site? > > > > Also, I have a problem with the firewall itself. I have the > > firewall setup in the diagram attached. I have static routes in > > the init.rc startup script, because I am unable to get routed or > > gated to receive any RIPv1 or RIPv2 broadcasts from my Cisco 2621 > > routers. Every time I try to start routed with the -q or -a switch > > (whichever switch is for listening only), routed says it cannot > > bind to address. > > > > Anyway, I can access the firewall via the web management interface, > > and also via SSH. The problem is that my clients on any of the > > 192.168 networks cannot get out to the Internet. I have allowed > > DNS (UDP > > only), HTTP, HTTPS, FTP, SSH, SFTP, and SFC. Can anyone tell me > > what could be going on? BTW, I can get out to the Internet from > > the > > firewall by both pinging an IP address (both the Internet DNS > > server and the IP address of 208.208.208.208), and by running the > > TEST > > INTERNET CONNECTION from the list after logging into the console > > with admin. > > > > I have not installed any of the security updates, as this causes a > > problem when restarting the system as it hangs on bringing up the > > ETH2 interface. Can anyone recommend how to install the security > > updates/patches? > > > > Thanks, > > > > Chris > > > > > > PS. My apologies to the mod, as I don't have a website to upload > > the image (only 20kb). > > OOps! hit the mouse button at the wrong moment, so previous message > resembles > the inner workings of my brain. Have you set up the LAN so that > all of the > system knows what the gateway address is?. You don't mention a > gateway > device. Just curious and hope to help.
Want to buy your Pack or Services from MandrakeSoft? Go to http://www.mandrakestore.com
