[leaf-user] ipip Tunnel's

Tue, 09 Nov 2004 14:32:26 -0800 

HI

I have happily been using a bering system for a while running my broadband and a couple of PC's. Boots of a CF card and has been very reliable. My need have just changed and I need to add an extra network and a ipip tunnel.

I have sucessfully setup the system with 3 nic's and can ping happily between networks. I am however having problems setting up a tunnel.

Here is the senario I want:

my router is connected to the internet and provides and internal network 192.168 etc and works as a standard router. I have a 3 nic with the ip of 44.131.14.200 and I want systems that attatch to that interface to be routed through an ipip tunnel to another system that has the rest of the 44.x.x.x network attatched. I also want users on the 192 network to be able to access all of the 44 network. Does that make sense?

I think I have set the zones up right, and the 44.x.x.x zone can ping 192 and vise-versa (is that how you spell it??) and both 44 and 192 can ping the Firewall and 192 can ping the internet. I don't want the 44 network access to the web!

Anyway the sysop that I am connecting the tunnel too has setup several before that work happily but we can't get this to work.

Here is what we are doing:

echo 1 > /proc/sys/net/ipv4/ip_forward

ifconfig tunl0 44.131.14.200 mtu 256

iptables -A INPUT -s 44.0.0.0/8 -d 44.0.0.0/8 -j ACCEPT
iptables -A OUTPUT -s 44.0.0.0/8 -d 44.0.0.0/8 -j ACCEPT
iptables -A FORWARD -s 44.0.0.0/8 -d 44.0.0.0/8 -j ACCEPT

iptables -I INPUT -j ACCEPT --proto 93
iptables -I OUTPUT -j ACCEPT --proto 93

iptables -I INPUT -j ACCEPT --proto 94
iptables -I OUTPUT -j ACCEPT --proto 94

ip route add 44.131.0.0/16 via 82.41.15.9 dev tunl0 proto static onlink

The hope being that any traffic from eth2 (44.131.14.200) gets fed down the 
tunnel.

I know there is a lot here but any help is appreciated.

Many thanks

Jon

[EMAIL PROTECTED]





-------------------------------------------------------
This SF.Net email is sponsored by:
Sybase ASE Linux Express Edition - download now for FREE
LinuxWorld Reader's Choice Award Winner for best database on Linux.
http://ads.osdn.com/?ad_id=5588&alloc_id=12065&op=click
------------------------------------------------------------------------
leaf-user mailing list: [EMAIL PROTECTED]
https://lists.sourceforge.net/lists/listinfo/leaf-user
SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html

Reply via email to