On Sat, Apr 12, 2008 at 10:35:42PM -0700, Josh wrote: > Hi all, Hello!
> We have a server in house for our lab with two nics. I was originally > hoping to use one of the nics in an exclusive IP zone, but I can't seem to > get it working in Indiana. We need the web server operational, so I decided > to try to get it working in the global zone. Really?!? An exclusive-IP zone should work just fine under Indiana. Can you share why it didn't work? > I want the network setup as follows > > NIC 1: 10.x.x.x address, where all intranet and internet traffic not > related to webserving should go through. This address obtained via DHCP Cool... > NIC2: 149.142.x.x static public address. The webserver should operate > through this address. Also cool... > So I initiated NIC2 with a > > ifconfig iprb0 149.142.x.x > ifconfig iprb0 up > > After doing this, I can reach the web server from other lab computers, but > I cant reach it from the outside world. > Traceroute from within the intranet: > > traceroute to headache.mednet.ucla.edu (149.142.212.20), 64 hops max, 40 byte > packets > 1 10.44.119.1 (10.44.119.1) 0.521 ms 0.250 ms 0.256 ms > 2 149.142.212.20 (149.142.212.20) 0.319 ms 0.264 ms 0.269 ms > > >From outside world hangs after a few hops. > > -bash-3.2$ netstat -r > > Routing Table: IPv4 > Destination Gateway Flags Ref Use Interface > -------------------- -------------------- ----- ----- ---------- --------- > default 10.44.119.1 UG 1 9 bnx0 > 10.44.119.0 10.44.119.177 U 1 4 bnx0 > 149.0.0.0 149.142.212.20 U 1 2 iprb0 > localhost localhost UH 1 49 lo0 > > I can't wrap my head around this tcp/ip routing, any help is > appreciated. Thanks in advance. You should use "netstat -rv" to show us the netmask you use. Or "ifconfig -a" will do that as well. Assuming you put a /8 on it (how else could you have the 149.0.0.0 as the "destination"?), all traffic with 149 goes through iprb0. But traffic from this node to ANYWHERE ELSE (even if its source address is 149.142.212.20) will go out the bnx0 interface. I'd really get that 149.142.212.20 up in its own IP instance. It's not that tough to do -- I run my home data center/webserver that way. Dan _______________________________________________ networking-discuss mailing list [email protected]
