Hi:
I think you should check your routing table to see weather you have
routing to 192.168.2.* from 24.*.*.*. Because IP masq. just replace the
orig. address(192.168.2.*) to another(24.*.*.*) and use a given port number
as a representation of the masqueraded address. So you can ping other box,
but they can't see you. I think that is why it is called masquerad.
Any comments is welcome.
With the best regards
Qi Fei, Test Engineer, IIPC China
Tel:+86-755-6639841 ext. 726 Fax:+86-755-6639840
Notes ID:Fei Qi/China/IIPC/IJV @IBMCN
email address: [EMAIL PROTECTED]
admlinux <[EMAIL PROTECTED]> on 99-04-12 09:38:11
To: [EMAIL PROTECTED], Glynn Clements <[EMAIL PROTECTED]>
cc: (bcc: Fei Qi/China/IIPC/IJV)
Subject: Can't ping internet from internal hosts
hi,
i have a rather perplexing problem which i am hoping someone knows how
to solve.
Currenlty from the dual homed box i am able to ping the external
internet assigned
ip address as
well as the internal masqueraded interface we shall call 192.168.2.1
eth1 . from the console
of dual homed box i am also able to ping and resolve any ip address on
the internet
as well as any
internal masqueraded ip address. but..:-() from hosts in the masqueraded
network
i am able to ping the internal ip address of the dual homed boxes
192.168.2.1 eth1as
well as the ip address
of the external internet interface which we shall call 24.xxx.xxx.100 on
eth0 . but from the
inside network i am unable to ping any further than the ip address of
the exteranl interface eth0
running ip address 24.xxx.xxx.100 eth0. how do i fix this situation??
here is a diagram to expand
on the problem..
( INTERNET )
|
==========================
24.xxx.xxx.100 eth0 on dual homed-host
i can ping this interface from both this box
as well as internal network boxes masqueraded
___________________________________
from this box i can ping any address period
either internet address or RFC1918 no problem
___________________________________
192.168.2.1 eth1 masquerading RFC 1918
address can be pinged from the console as well
inside network 192.168.2.0
==============================
|
( )
( Any host on inside 192.168.2. netowork )
( Can ping themselves as well as 192.168.2.1 )
( plus 24.xxx.xxx.100 eth0 interface but not )
( any other ips on internet period. )
-i am running ipfwadm on dual homed box but am not certain this is the
cause or if it is a routing issue. please advise with logic
so that i can understand.:-)
TIA
rick
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
-
To unsubscribe from this list: send the line "unsubscribe linux-net" in
the body of a message to [EMAIL PROTECTED]
