Prezados boa tarde
Estou com problema no seguinte ambiente, tenho 2 predios interligados com
uma antena wireless, rodando livecdrouter. Um dos prédios recebe a Internet
( velox ), com isso compartilho a conexao com as subredes, tenho squid3 e
iptables rodando. A internet funciona perfeitamente, porem tenho uma
aplicação desktop ( openfire ) que roda em uma porta especifica ( 5222), os
clientes que estão antes da bridge feita pelo livecdrouter funcionam
perfeitamente, podem os clientes pós esse roteamente não conseguem
conectar...
tentei esboçar um desenho simples para maior entendimento, abaixo segue as
configurações de ambos os roteadores...ip, rotas, regras iptables...
fiz da seguinte forma as conexao que tem origem do clinete B faço um DNAT
no router B para o router A, que por sua vez faço para o gateway de saída
para a Internet. Se alguem aqu ina lista usar esse tipo de solução ou puder
me ajudar fico grato.
[cliente B ] -> [ router B ] <wireless> [ router A ] -> [cliente A] ->
[gateway( velox) ]
##################################################################################################
PONTA A
root@cdrouter:~# ifconfig
eth0 Link encap:Ethernet HWaddr 00:50:04:AC:8F:B0
inet addr:172.16.1.5 Bcast:172.16.255.255 Mask:255.255.255.0
eth1 Link encap:Ethernet HWaddr 00:50:04:78:11:0F
inet addr:192.168.31.11 Bcast:192.168.31.14 Mask:255.255.255.240
root@cdrouter:~# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
192.168.31.160 172.16.1.2 255.255.255.240 UG 0 0 0 eth0
192.168.31.0 0.0.0.0 255.255.255.240 U 0 0 0 eth1
192.168.31.192 172.16.1.2 255.255.255.224 UG 0 0 0 eth0
172.16.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 172.16.1.1 0.0.0.0 UG 0 0 0 eth0
root@cdrouter:~# iptables -nL -t nat
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
DNAT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5222
to:192.168.31.1
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
##################################################################################################
PONTA B
root@cdrouter:~# ifconfig
eth0 Link encap:Ethernet HWaddr 00:90:CC:2F:28:6D
inet addr:192.168.31.193 Bcast:192.168.31.223
Mask:255.255.255.224
wlan0 Link encap:Ethernet HWaddr 00:0E:2E:24:7A:9C
inet addr:172.16.1.2 Bcast:172.16.255.255 Mask:255.255.255.0
root@cdrouter:~# route -n
Kernel IP routing table
Destination Gateway Genmask Flags Metric Ref Use
Iface
192.168.31.0 172.16.1.5 255.255.255.240 UG 0 0 0
wlan0
192.168.31.192 0.0.0.0 255.255.255.224 U 0 0 0 eth0
172.16.1.0 0.0.0.0 255.255.255.0 U 0 0 0
wlan0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
0.0.0.0 172.16.1.1 0.0.0.0 UG 0 0 0
wlan0
root@cdrouter:~# iptables -t nat -nL
Chain PREROUTING (policy ACCEPT)
target prot opt source destination
DNAT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5222
to:192.168.31.11
Chain POSTROUTING (policy ACCEPT)
target prot opt source destination
Chain OUTPUT (policy ACCEPT)
target prot opt source destination
##################################################################################################
--
--------------------------------------------------
°v° Flávio Alexandre dos Reis
/( )\ Juiz de Fora - MG
^ ^
Linux user #481115
Ubuntu user #24388
--
Mais sobre o Ubuntu em português: http://www.ubuntu-br.org/comece
Lista de discussão Ubuntu Brasil
Histórico, descadastramento e outras opções:
https://lists.ubuntu.com/mailman/listinfo/ubuntu-br
