> Sometimes LEAF distros are configured to block traffic destined for > the private address space from going out eth0. It's designed that > way because private addresses are in general for internal use only. > Rarely, an ISP uses these, and adjustments are made to ipfilter.conf > or wherever your rules are defined. That makes good sense, but I stripped Whorewall out to try to simplify things for myself.
> Btw, tabs mess up your tables. I converted them to spaces. Thanks!! > I'm deciding not to comment on the routes at all until > you post the output of ifconfig -a on all four sites. I've included the useful data with each of the routing tables (I hope I didn't leave out anything that you were looking for). > I will mention that I don't get the concept of having both > 10.10.1.254 and 10.10.1.40 assigned to the same eth0, for > instance. I did this because that router is connected via 100Mb fibre to another building where the rest of the routing happens. eth0 on Site 1 connects to a switch, and 10.10.1.254 (my main gateway router) connects to a different port on that same switch. Site 1: 10.10.1.0 eth0 10.10.1.40/24 eth1 192.168.1.254/24 Destination Mask Gateway Dev 0.0.0.0 0.0.0.0 10.10.1.254 eth0 (to internet) 10.10.1.0 255.255.255.0 10.10.1.40 eth0 (wired interface) 10.10.12.0 255.255.255.0 192.168.1.253 eth1 (wireless to site 2) 10.10.13.0 255.255.255.0 192.168.1.253 eth1 (wireless to site 2) 192.168.1.0 255.255.255.0 192.168.1.254 eth1 (wireless interface) 192.168.2.0 255.255.255.0 192.168.1.253 eth1 (wireless to site 2) Site 2a: 10.10.12.0 eth0 10.10.12.254/24 eth1 192.168.1.253/24 Destination Mask Gateway Dev 0.0.0.0 0.0.0.0 192.168.1.254 eth1 (wireless to site 1) 10.10.12.0 255.255.255.0 10.10.12.254 eth0 (wired interface) 10.10.13.0 255.255.255.0 10.10.12.253 eth0 (to other local router) 192.168.1.0 255.255.255.0 192.168.1.253 eth1 (wireless interface) 192.168.2.0 255.255.255.0 10.10.12.253 eth0 (to other local router) (Site 2a and 2b are connected to the same switch) Site 2b: 10.10.12.0 eth0 10.10.12.253/24 eth1 192.168.2.254/24 Destination Mask Gateway Dev 0.0.0.0 0.0.0.0 10.10.12.254 eth0 (to other local router) 10.10.12.0 255.255.255.0 10.10.12.253 eth0 (wired interface) 10.10.13.0 255.255.255.0 192.168.2.253 eth1 (wireless to site 3) 192.168.2.0 255.255.255.0 192.168.2.254 eth1 (wireless interface) Site 3: 10.10.13.0 eth0 10.10.13.254/24 eth1 192.168.2.253/24 Destination Mask Gateway Dev 0.0.0.0 0.0.0.0 192.168.2.254 eth1 (wireless to site 2) 10.10.13.0 255.255.255.0 10.10.13.254 eth0 (wired interface) 192.168.2.0 255.255.255.0 192.168.2.253 eth1 (wireless interface) Bob Pocius _______________________________________________ Leaf-user mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user
