RE: [Leaf-user] Dachstein and two external interfaces?

Wed, 13 Feb 2002 07:51:09 -0800 


Hey Reginald!

I found the easy part was getting the two interfaces to work.  The hard part is trying 
to get IPChains to be able use both.  I think it should be possible, but was hoping 
some more knowledgeable souls could give me they're opinion on it before I spend too 
much time tinkering with it to get it to work.  My concern now is if I can masq out 
two interfaces at the same time.  

Ultimately, I was hoping to be able to make Dachstein have support for two or more 
external interfaces using the existing EXTERN_IF variable.  Or perhaps adding my own 
variable to support additional external interfaces.

My next test will be to try masq'ing on the ppp0 interface with the following command:

ipchains -A forward -j MASQ -p all -s 10.0.1.0/24 -d 0/0 -i ppp0

If I see some results after doing this, I might start trying to do more modifications 
to support multiple external interfaces.  I'll be trying this in a few hours, so maybe 
I'll post my results to the list.

Cheers,
Ryan


-----Original Message-----
From: Reginald R. Richardson [mailto:[EMAIL PROTECTED]] 
Sent: Tuesday, February 12, 2002 1:24 PM
To: Ryan P. Matijcio; [EMAIL PROTECTED]
Subject: Re: [Leaf-user] Dachstein and two external interfaces?

Welcome to the 2 External Interfaces world..

Lots of us has try this, i think Jack Coates has the most experience here with that..
But so far, i haven't heard of any one, with any SUCCESS story..

Seems like u already figure out the problem, getting the FIREWALL to work with 2 
external interfaces..

I got some grey hair trying that for weeks, till i gived up....

cheers

On Tue, 12 Feb 2002 13:15:11 -0500, Ryan P. Matijcio wrote:
>I managed to get two interfaces going on Dachstein on Friday.��Using
>the ethX_ROUTES= command instead of the ethX_DEFAULT_GW command.��I
>added _metric_2�to the end of my route and it created a default
>route with a metric of 2.��I did a network reload and tested
>everything to ensure it worked properly which it did.�
>
>�
>
>So far so good.�
>
>�
>
>Next, I brought up the pppoe interface by doing a /etc/init.d/pppoe
>start.��It came up as expected.��However, it did not set the default
>gateway as it normally does.��So I did so manually using the ip net
>command and set it to have a metric of 1. �I was thinking of
>scripting something in the ip-up script to add the gateway
>automatically with the right metric.�
>
>�
>
>I also did some testing from inside the firewall to see if I could
>pass traffic through it.��As expected, I could not.��I think this is
>probably because I need to modify the firewall to support the extra
>external interface.��So my million dollar question is, how can I
>make Dachstein work with two external interfaces?��Ive been digging
>thought the ipfilter.conf file and so far havent figured out how to
>make this work.��Id really like to hear some suggestions on how one
>might accomplish this type of configuration.
>
>�
>
>Thanks in advance.
>
>�
>
>Ryan
>
>�
>
>�
>
>�
>


�
�
-------------------------------------------------------------
Reginald R. Richardson
[EMAIL PROTECTED] on 2/12/2002


_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user

_______________________________________________
Leaf-user mailing list
[EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user

Reply via email to