Re: understanding Routing Cisco vs. Linux
what exactly is that you are trying to do... I am trying to reduce latency, reduce peer to peer bandwidth hogs, and do some stateful firewalling while I am at it. I want to drop in one Debian Linux box running the 2.4.19 Kernel between the router and the switch. The Linux box has 2 interfaces. It will be routing and inspecting packets. I understand the first thing I need to do is get packets to route. This is the hard part for me. I have used IP-tables with one network and nat, but I have never routed multiple networks. We have 6 T-1 with 16 class C networks coming into a Cisco 7200 VXR. The router is managed by Fast-net, our upstream provider. They were kind enough to give the router config file. ;-) Here is the part I am need to worry about. ip classless ip route 192.146.226.0 255.255.255.0 FastEthernet0/0 ip route 209.243.33.0 255.255.255.0 FastEthernet0/0 ip route 209.243.34.0 255.255.255.0 FastEthernet0/0 ip route 209.243.35.0 255.255.255.0 FastEthernet0/0 ip route 209.243.36.0 255.255.255.0 FastEthernet0/0 ip route 209.243.37.0 255.255.255.0 FastEthernet0/0 ip route 209.243.38.0 255.255.255.0 FastEthernet0/0 ip route 209.243.39.0 255.255.255.0 FastEthernet0/0 ip route 209.243.40.0 255.255.255.0 FastEthernet0/0 ip route 209.243.41.0 255.255.255.0 FastEthernet0/0 ip route 209.243.42.0 255.255.255.0 FastEthernet0/0 ip route 209.243.43.0 255.255.255.0 FastEthernet0/0 ip route 209.243.44.0 255.255.255.0 FastEthernet0/0 ip route 209.243.45.0 255.255.255.0 FastEthernet0/0 ip route 209.243.46.0 255.255.255.0 FastEthernet0/0 ip route 209.243.47.0 255.255.255.0 FastEthernet0/0 We manage the Catalyst 5500 switch. I am not sure how the Linux box functioning as a Router/firewall/shaper will fit in the network. Should I ask Fast-net to reconfigure their router so that their router passes all packets to the new Linux router ? Or, do I need simply to connect 2 cross over cables and drop in the Linux router and reconfigure the switch to point to the new router ? Things I am looking at: http://linux.oreillynet.com/pub/a/linux/2000/08/24/LinuxAdmin.html http://www.linuxpowered.com/archive/howto/Adv-Routing-HOWTO-12.html http://www.tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.cookbook.ultimate-tc.html Don't think I will be making it a bridge http://mailman.ds9a.nl/pipermail/lartc/2001q3/001424.html -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: understanding Routing Cisco vs. Linux
also sprach Thedore Knab [EMAIL PROTECTED] [2002.09.26.1508 +0200]: ip route 209.243.33.0 255.255.255.0 FastEthernet0/0 ip route 209.243.34.0 255.255.255.0 FastEthernet0/0 ip route 209.243.35.0 255.255.255.0 FastEthernet0/0 ip route 209.243.36.0 255.255.255.0 FastEthernet0/0 ip route 209.243.37.0 255.255.255.0 FastEthernet0/0 ip route 209.243.38.0 255.255.255.0 FastEthernet0/0 ip route 209.243.39.0 255.255.255.0 FastEthernet0/0 ip route 209.243.40.0 255.255.255.0 FastEthernet0/0 ip route 209.243.41.0 255.255.255.0 FastEthernet0/0 ip route 209.243.42.0 255.255.255.0 FastEthernet0/0 ip route 209.243.43.0 255.255.255.0 FastEthernet0/0 ip route 209.243.44.0 255.255.255.0 FastEthernet0/0 ip route 209.243.45.0 255.255.255.0 FastEthernet0/0 ip route 209.243.46.0 255.255.255.0 FastEthernet0/0 ip route 209.243.47.0 255.255.255.0 FastEthernet0/0 ip route 209.243.32.0 255.255.255.0 where things go if not FastEthernet0/0 ip route 209.243.32.0 255.255.240.0 FastEthernet0/0 does the same, and faster. -- martin; (greetings from the heart of the sun.) \ echo mailto: !#^.*|tr * mailto:; net@madduck unix, because rebooting is for adding new hardware. msg06855/pgp0.pgp Description: PGP signature
Re: understanding Routing Cisco vs. Linux
Hi Martin, at least his upstream seems to be doing the right thing Show Level 3 (San Jose, CA) BGP routes for 209.243.46.0 BGP routing table entry for 209.243.32.0/20 Paths: (9 available, best #1, table Default-IP-Routing-Table) 209 1785 21767, (aggregated by 21767 209.243.32.1) AS-path translation: { ASN-QWEST APPLIED WASHINGTON-COLLEGE } core2.SanJose1 (metric 41) from core2.SanJose1 (core2.SanJose1) Origin IGP, metric 10, localpref 86, valid, internal, atomic-aggregate, best Community: North_America NA_Lclprf_86 United_States NA_Peer NA_Dedicated_Facility NA_MEDs_Ignored San_Jose 7018 21767 21767, (aggregated by 21767 209.243.32.1) AS-path translation: { ATT-INTERNET4 WASHINGTON-COLLEGE WASHINGTON-COLLEGE } core1.Dallas1 (metric 3788) from core1.Dallas1 (core1.Dallas1) Origin IGP, metric 10, localpref 86, valid, internal, atomic-aggregate Community: North_America NA_Lclprf_86 United_States NA_Peer NA_Dedicated_Facility NA_MEDs_Ignored Dallas . On Thu, Sep 26, 2002 at 03:18:30PM +0200, martin f krafft wrote: also sprach Thedore Knab [EMAIL PROTECTED] [2002.09.26.1508 +0200]: ip route 209.243.34.0 255.255.255.0 FastEthernet0/0 ip route 209.243.35.0 255.255.255.0 FastEthernet0/0 . ip route 209.243.47.0 255.255.255.0 FastEthernet0/0 ip route 209.243.32.0 255.255.255.0 where things go if not FastEthernet0/0 ip route 209.243.32.0 255.255.240.0 FastEthernet0/0 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
unsubscribe dave@electriciceman.org
-- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: understanding Routing Cisco vs. Linux
Forwarded email. ---BeginMessage--- Hi Thedore On Thu, Sep 26, 2002 at 09:08:26AM -0400, Thedore Knab wrote: I am trying to reduce latency, reduce peer to peer bandwidth hogs, and do some stateful firewalling while I am at it. Here is the part I am need to worry about. ip classless ip route 192.146.226.0 255.255.255.0 FastEthernet0/0 ip route 209.243.33.0 255.255.255.0 FastEthernet0/0 ... ip route 209.243.34.0 255.255.255.0 FastEthernet0/0 Your provider probably should have done some supernetting rather than listing all these /24s.. but that is a nicety (I hope he ISNT annoucing them as /24s! into the BGP). By the looks of it you aren't using ANY vlans.. as the router is dumping all the packets onto the local fast ethernet. (the config on the 5500 would interest me). What you might want to try and do is setup 802.1Q between the Cat 5500 and your linux box. You will then need a transfer network between the linux box and the cisco. The Linux box interface connected to the Cat 5500 should look like multiple 'sub interfaces' (havent used the 802.1q on linux so dont know exactly how its implemented). This will effectively turn your box into a router with 'X' interfaces (one into each vlan on the switch), and all traffic between ports will go over the linux box. (to be honest, it would probably be easier taking control of the 7200 and not botherring with the linux box). A sample config with a linux box Internet | | C7200 192.168.0.1/28 (you should probably use NON RFC addresses here) | | 192.168.0.2/28 Linux Vlan 1 x.x.x.1/24 Vlan 2 x.x.y.1/24 Vlan 3 x.x.z.1/24 | | Trunk C5500 | |---Server in Vlan1 | |---Server in VLan2 and on the cisco 7200 route your networks to 192.168.0.2... and the servers in Vlan one use the default route of x.x.x.1, vlan 2x.x.y.1, etc but as I said, consider using the 7200 to do this. Andrew ---End Message---
unsubscribe
unsubscribe -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
cgi's don't work in vhost config with apache
Heya all.. Sorry for the cross-post but it seemed reasonably applicable to debian-user and debian-isp.. I'm trying a simple Hello Web script in python and (to prove that it isn't python related) as a simple shell script. Both work on my Debian/sid workstation, which has a default apache configuration. However, on my Debian/woody web server, which has several virtual hosts, I get 500/Internal Server Error. /var/log/apache/error.log says Premature end of script headers. I first stuck the script(s) in /usr/lib/cg-bin without modifying apache configuration. I tried adding the ScriptAlias line and Directory entry from apache's global config to the VirtualHost - no cigar. I can't test this server with a default apache config because the virtual hosts are customers of mine, and wouldn't be happy with their sites going down :) For reference, here are the scripts: hello.py: #!/usr/bin/python print Content-Type: text/plain\n\n print Hello Web! hello.sh: #!/bin/sh echo Content-Type: text/plain echo echo Hello Web! Thanks in advance for any help! -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: understanding Routing Cisco vs. Linux
I put both the router config file and catalyst config file here. I did not create either of them. The only Cisco devices I have setup where Cisco Local Directors. http://albert.washcoll.edu/~tknab2/debian_isp/ If you want to look at it. user: debian pass: debian -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: understanding Routing Cisco vs. Linux
On Thu, 26 Sep 2002 11:47:34 +0300, Hasso Tepper [EMAIL PROTECTED] wrote: Yes, it supports 802.1q. No ISL AFAIK. http://www.candelatech.com/~greear/vlan.html No need for the patch. It's in the mainstream kernel since 2.4.16. Greetings Marc -- -- !! No courtesy copies, please !! - Marc Haber |Questions are the | Mailadresse im Header Karlsruhe, Germany | Beginning of Wisdom | Fon: *49 721 966 32 15 Nordisch by Nature | Lt. Worf, TNG Rightful Heir | Fax: *49 721 966 31 29 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
[Apache] htaccess Problem about Two Directory Definition
Hello there, I'm now confused about how authentication with .htaccess on Apache is implemented. Suppose that I got two directories, /home/Anderson/public_html/ and /home/A/B/, and they are all defined almost identically in httpd.conf : Directory /home/*/public_html Options FollowSymLinks MultiViews AllowOverride Limit Options FileInfo AuthConfig Limit GET POST OPTIONS PROPFIND Order allow,deny Allow from all /Limit LimitExcept GET POST OPTIONS PROPFIND Order deny,allow Deny from all /LimitExcept /Directory Directory /home/A/* (.. Same as above) /Directory The only difference maybe is that /home/A/B is a VirtualHost(www.ABC.org). Now I am planning to authenticate my users by usernamd and password controlled by LDAP if they are not connecting with a specific IP I indicate. When I put my .htaccess under /home/Anderson/public_html/ and /home/A/B/, it seems that only the one under /home/Anderson/public_html/ works. While I try to access www.ABC.org, all of the authenticative function is invaild and users are permitted to view my page without any restriction. Here is my .htaccess : AuthName Login or Kick Your Ass ! AuthLDAPUrl ldap://www.xxx.org/.. AuthType Basic Limit GET POST Order deny,allow Deny from all Allow from 10.0.0.1 require user Arthas Thrall Jaina Satisfy any /Limit Was there any mistake I made during my configuring or something I missed here? Anyway, thanks for the patience of your reading. Thanks, Anderson -- Trust Unique ... Axacheng's PGP Public Key http://www.navigation.idv.tw/pgpkey -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
[Help] Maildir with Quota
Hell List : I have a directory named /home restricted to HD space by quotatools2. NOW,i need use quota to restrict my user's Maildir ONLY and other directory DON'T restricted by quota such as /home/user11/Maildir = Need restricte /home/user11/public_html = NOT need restricte /home/user11/upload = NOT need restricte /home/user22/Maildir = Need restricte /home/user22/public_html = NOT need restricte /home/user22/upload = NOT need restricte Does Anyone knows what's tool can solve this problem??? @_@ Thanks You... -- Trust Unique ... Axacheng's PGP Public Key http://www.navigation.idv.tw/pgpkey -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of unsubscribe. Trouble? Contact [EMAIL PROTECTED]
Re: understanding Routing Cisco vs. Linux
Hi Thedore! what exactly is that you are trying to do... Does linux support 802.1Q trunking yet? or ISL? because, by the looks of it, this is what you REALLY want to do... otherwise? why are you putting the linux box in there? what benifit does it bring? Andrew On Wed, Sep 25, 2002 at 06:16:58PM -0400, Thedore Knab wrote: Currently, I am creating a simple Linux Router with CQB and Iptables. The machine I have only has 2 interfaces. We have the following devices on our network: 1 Cisco Catalyst connecting 16 Class C Networks 1 Cisco Router Routing packets to the inside The Catalyst uses VLans for our entire network. It appears that the Catalyst is doing routing for the virtual networks as it should. But, I am scratching my head over how the Catalyst handles incoming and outgoing connections. Traffic seems to flow differently depending on its direction.
Re: understanding Routing Cisco vs. Linux
[EMAIL PROTECTED] wrote: Hi Thedore! what exactly is that you are trying to do... Same question :) Does linux support 802.1Q trunking yet? or ISL? Yes, it supports 802.1q. No ISL AFAIK. http://www.candelatech.com/~greear/vlan.html -- Hasso Tepper
Re: understanding Routing Cisco vs. Linux
what exactly is that you are trying to do... I am trying to reduce latency, reduce peer to peer bandwidth hogs, and do some stateful firewalling while I am at it. I want to drop in one Debian Linux box running the 2.4.19 Kernel between the router and the switch. The Linux box has 2 interfaces. It will be routing and inspecting packets. I understand the first thing I need to do is get packets to route. This is the hard part for me. I have used IP-tables with one network and nat, but I have never routed multiple networks. We have 6 T-1 with 16 class C networks coming into a Cisco 7200 VXR. The router is managed by Fast-net, our upstream provider. They were kind enough to give the router config file. ;-) Here is the part I am need to worry about. ip classless ip route 192.146.226.0 255.255.255.0 FastEthernet0/0 ip route 209.243.33.0 255.255.255.0 FastEthernet0/0 ip route 209.243.34.0 255.255.255.0 FastEthernet0/0 ip route 209.243.35.0 255.255.255.0 FastEthernet0/0 ip route 209.243.36.0 255.255.255.0 FastEthernet0/0 ip route 209.243.37.0 255.255.255.0 FastEthernet0/0 ip route 209.243.38.0 255.255.255.0 FastEthernet0/0 ip route 209.243.39.0 255.255.255.0 FastEthernet0/0 ip route 209.243.40.0 255.255.255.0 FastEthernet0/0 ip route 209.243.41.0 255.255.255.0 FastEthernet0/0 ip route 209.243.42.0 255.255.255.0 FastEthernet0/0 ip route 209.243.43.0 255.255.255.0 FastEthernet0/0 ip route 209.243.44.0 255.255.255.0 FastEthernet0/0 ip route 209.243.45.0 255.255.255.0 FastEthernet0/0 ip route 209.243.46.0 255.255.255.0 FastEthernet0/0 ip route 209.243.47.0 255.255.255.0 FastEthernet0/0 We manage the Catalyst 5500 switch. I am not sure how the Linux box functioning as a Router/firewall/shaper will fit in the network. Should I ask Fast-net to reconfigure their router so that their router passes all packets to the new Linux router ? Or, do I need simply to connect 2 cross over cables and drop in the Linux router and reconfigure the switch to point to the new router ? Things I am looking at: http://linux.oreillynet.com/pub/a/linux/2000/08/24/LinuxAdmin.html http://www.linuxpowered.com/archive/howto/Adv-Routing-HOWTO-12.html http://www.tldp.org/HOWTO/Adv-Routing-HOWTO/lartc.cookbook.ultimate-tc.html Don't think I will be making it a bridge http://mailman.ds9a.nl/pipermail/lartc/2001q3/001424.html
Re: understanding Routing Cisco vs. Linux
also sprach Thedore Knab [EMAIL PROTECTED] [2002.09.26.1508 +0200]: ip route 209.243.33.0 255.255.255.0 FastEthernet0/0 ip route 209.243.34.0 255.255.255.0 FastEthernet0/0 ip route 209.243.35.0 255.255.255.0 FastEthernet0/0 ip route 209.243.36.0 255.255.255.0 FastEthernet0/0 ip route 209.243.37.0 255.255.255.0 FastEthernet0/0 ip route 209.243.38.0 255.255.255.0 FastEthernet0/0 ip route 209.243.39.0 255.255.255.0 FastEthernet0/0 ip route 209.243.40.0 255.255.255.0 FastEthernet0/0 ip route 209.243.41.0 255.255.255.0 FastEthernet0/0 ip route 209.243.42.0 255.255.255.0 FastEthernet0/0 ip route 209.243.43.0 255.255.255.0 FastEthernet0/0 ip route 209.243.44.0 255.255.255.0 FastEthernet0/0 ip route 209.243.45.0 255.255.255.0 FastEthernet0/0 ip route 209.243.46.0 255.255.255.0 FastEthernet0/0 ip route 209.243.47.0 255.255.255.0 FastEthernet0/0 ip route 209.243.32.0 255.255.255.0 where things go if not FastEthernet0/0 ip route 209.243.32.0 255.255.240.0 FastEthernet0/0 does the same, and faster. -- martin; (greetings from the heart of the sun.) \ echo mailto: !#^.*|tr * mailto:; [EMAIL PROTECTED] unix, because rebooting is for adding new hardware. pgpaKQj4NWOkY.pgp Description: PGP signature
Re: understanding Routing Cisco vs. Linux
Hi Martin, at least his upstream seems to be doing the right thing Show Level 3 (San Jose, CA) BGP routes for 209.243.46.0 BGP routing table entry for 209.243.32.0/20 Paths: (9 available, best #1, table Default-IP-Routing-Table) 209 1785 21767, (aggregated by 21767 209.243.32.1) AS-path translation: { ASN-QWEST APPLIED WASHINGTON-COLLEGE } core2.SanJose1 (metric 41) from core2.SanJose1 (core2.SanJose1) Origin IGP, metric 10, localpref 86, valid, internal, atomic-aggregate, best Community: North_America NA_Lclprf_86 United_States NA_Peer NA_Dedicated_Facility NA_MEDs_Ignored San_Jose 7018 21767 21767, (aggregated by 21767 209.243.32.1) AS-path translation: { ATT-INTERNET4 WASHINGTON-COLLEGE WASHINGTON-COLLEGE } core1.Dallas1 (metric 3788) from core1.Dallas1 (core1.Dallas1) Origin IGP, metric 10, localpref 86, valid, internal, atomic-aggregate Community: North_America NA_Lclprf_86 United_States NA_Peer NA_Dedicated_Facility NA_MEDs_Ignored Dallas . On Thu, Sep 26, 2002 at 03:18:30PM +0200, martin f krafft wrote: also sprach Thedore Knab [EMAIL PROTECTED] [2002.09.26.1508 +0200]: ip route 209.243.34.0 255.255.255.0 FastEthernet0/0 ip route 209.243.35.0 255.255.255.0 FastEthernet0/0 . ip route 209.243.47.0 255.255.255.0 FastEthernet0/0 ip route 209.243.32.0 255.255.255.0 where things go if not FastEthernet0/0 ip route 209.243.32.0 255.255.240.0 FastEthernet0/0
cgi's don't work in vhost config with apache
Heya all.. Sorry for the cross-post but it seemed reasonably applicable to debian-user and debian-isp.. I'm trying a simple Hello Web script in python and (to prove that it isn't python related) as a simple shell script. Both work on my Debian/sid workstation, which has a default apache configuration. However, on my Debian/woody web server, which has several virtual hosts, I get 500/Internal Server Error. /var/log/apache/error.log says Premature end of script headers. I first stuck the script(s) in /usr/lib/cg-bin without modifying apache configuration. I tried adding the ScriptAlias line and Directory entry from apache's global config to the VirtualHost - no cigar. I can't test this server with a default apache config because the virtual hosts are customers of mine, and wouldn't be happy with their sites going down :) For reference, here are the scripts: hello.py: #!/usr/bin/python print Content-Type: text/plain\n\n print Hello Web! hello.sh: #!/bin/sh echo Content-Type: text/plain echo echo Hello Web! Thanks in advance for any help!
Re: cgi's don't work in vhost config with apache
Justin Ryan [EMAIL PROTECTED] schrieb am Thu, Sep 26, 2002 at 09:00:38AM -0500: I first stuck the script(s) in /usr/lib/cg-bin without modifying apache configuration. I tried adding the ScriptAlias line and Directory entry from apache's global config to the VirtualHost - no cigar. I've done it this way: Directory /home/dkg/www/python AddHandler python-program .py PythonHandler mptest PythonDebug On /Directory #!/usr/bin/python print Content-Type: text/plain\n\n print Hello Web! Try the following code: from mod_python import apache def handler(req): req.content_type = text/plain req.send_http_header() req.write(High, Girls!) return apache.OK HTH, #dkg -- # Schwanzlaengenvergleich ;) echo `uptime|grep days|sed 's/.*up \([0-9]*\) day.*/\1\/10+/'; \ cat /proc/cpuinfo|grep MHz|awk '{print $4/30 +;}'; free|grep '^Mem' \ |awk '{print $3/1024/3+}'; df -P -k -x nfs | grep -v 1k \ | awk '{if ($1 ~ /dev/(scsi|sd)){ s+= $2} s+= $2;} END \ {print s/1024/50/15+70;}'`|bc|sed 's/\(.$\)/.\1cm/'
Re: cgi's don't work in vhost config with apache
Hi you are using suexec, aren't you? So check suexec's log file. On Thu, Sep 26, 2002 at 09:00:38AM -0500, Justin Ryan wrote: Heya all.. Sorry for the cross-post but it seemed reasonably applicable to debian-user and debian-isp.. I'm trying a simple Hello Web script in python and (to prove that it isn't python related) as a simple shell script. Both work on my Debian/sid workstation, which has a default apache configuration. However, on my Debian/woody web server, which has several virtual hosts, I get 500/Internal Server Error. /var/log/apache/error.log says Premature end of script headers. I first stuck the script(s) in /usr/lib/cg-bin without modifying apache configuration. I tried adding the ScriptAlias line and Directory entry from apache's global config to the VirtualHost - no cigar. -- Christian Zagrodnick gocept gmbh co. kg - schalaunische strasse 6 - 06366 koethen/anhalt fon. +49 3496 3099114 - fax. +49 3496 3099118 - mob. +49 173 9078826
unsubscribe dave@electriciceman.org
Re: understanding Routing Cisco vs. Linux
also sprach [EMAIL PROTECTED] [EMAIL PROTECTED] [2002.09.26.1546 +0200]: at least his upstream seems to be doing the right thing his thing ain't wrong, and with 20 routing entries, it really doesn't matter. but this is what supernetting is for... -- martin; (greetings from the heart of the sun.) \ echo mailto: !#^.*|tr * mailto:; [EMAIL PROTECTED] if billy gates had a penny for every time, a windoze box crashed... oh, wait a minute -- he already does. pgpwTpXKjUYA7.pgp Description: PGP signature
Re: understanding Routing Cisco vs. Linux
Forwarded email. ---BeginMessage--- Hi Thedore On Thu, Sep 26, 2002 at 09:08:26AM -0400, Thedore Knab wrote: I am trying to reduce latency, reduce peer to peer bandwidth hogs, and do some stateful firewalling while I am at it. Here is the part I am need to worry about. ip classless ip route 192.146.226.0 255.255.255.0 FastEthernet0/0 ip route 209.243.33.0 255.255.255.0 FastEthernet0/0 ... ip route 209.243.34.0 255.255.255.0 FastEthernet0/0 Your provider probably should have done some supernetting rather than listing all these /24s.. but that is a nicety (I hope he ISNT annoucing them as /24s! into the BGP). By the looks of it you aren't using ANY vlans.. as the router is dumping all the packets onto the local fast ethernet. (the config on the 5500 would interest me). What you might want to try and do is setup 802.1Q between the Cat 5500 and your linux box. You will then need a transfer network between the linux box and the cisco. The Linux box interface connected to the Cat 5500 should look like multiple 'sub interfaces' (havent used the 802.1q on linux so dont know exactly how its implemented). This will effectively turn your box into a router with 'X' interfaces (one into each vlan on the switch), and all traffic between ports will go over the linux box. (to be honest, it would probably be easier taking control of the 7200 and not botherring with the linux box). A sample config with a linux box Internet | | C7200 192.168.0.1/28 (you should probably use NON RFC addresses here) | | 192.168.0.2/28 Linux Vlan 1 x.x.x.1/24 Vlan 2 x.x.y.1/24 Vlan 3 x.x.z.1/24 | | Trunk C5500 | |---Server in Vlan1 | |---Server in VLan2 and on the cisco 7200 route your networks to 192.168.0.2... and the servers in Vlan one use the default route of x.x.x.1, vlan 2x.x.y.1, etc but as I said, consider using the 7200 to do this. Andrew ---End Message---
unsubscribe
unsubscribe
Re: understanding Routing Cisco vs. Linux
I put both the router config file and catalyst config file here. I did not create either of them. The only Cisco devices I have setup where Cisco Local Directors. http://albert.washcoll.edu/~tknab2/debian_isp/ If you want to look at it. user: debian pass: debian
Re: understanding Routing Cisco vs. Linux
On Thu, 26 Sep 2002 11:47:34 +0300, Hasso Tepper [EMAIL PROTECTED] wrote: Yes, it supports 802.1q. No ISL AFAIK. http://www.candelatech.com/~greear/vlan.html No need for the patch. It's in the mainstream kernel since 2.4.16. Greetings Marc -- -- !! No courtesy copies, please !! - Marc Haber |Questions are the | Mailadresse im Header Karlsruhe, Germany | Beginning of Wisdom | Fon: *49 721 966 32 15 Nordisch by Nature | Lt. Worf, TNG Rightful Heir | Fax: *49 721 966 31 29