Prezados boa tarde Estou com problema no seguinte ambiente, tenho 2 predios interligados com uma antena wireless, rodando livecdrouter. Um dos prédios recebe a Internet ( velox ), com isso compartilho a conexao com as subredes, tenho squid3 e iptables rodando. A internet funciona perfeitamente, porem tenho uma aplicação desktop ( openfire ) que roda em uma porta especifica ( 5222), os clientes que estão antes da bridge feita pelo livecdrouter funcionam perfeitamente, podem os clientes pós esse roteamente não conseguem conectar...
tentei esboçar um desenho simples para maior entendimento, abaixo segue as configurações de ambos os roteadores...ip, rotas, regras iptables... fiz da seguinte forma as conexao que tem origem do clinete B faço um DNAT no router B para o router A, que por sua vez faço para o gateway de saída para a Internet. Se alguem aqu ina lista usar esse tipo de solução ou puder me ajudar fico grato. [cliente B ] -> [ router B ] <wireless> [ router A ] -> [cliente A] -> [gateway( velox) ] ################################################################################################## PONTA A root@cdrouter:~# ifconfig eth0 Link encap:Ethernet HWaddr 00:50:04:AC:8F:B0 inet addr:172.16.1.5 Bcast:172.16.255.255 Mask:255.255.255.0 eth1 Link encap:Ethernet HWaddr 00:50:04:78:11:0F inet addr:192.168.31.11 Bcast:192.168.31.14 Mask:255.255.255.240 root@cdrouter:~# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.31.160 172.16.1.2 255.255.255.240 UG 0 0 0 eth0 192.168.31.0 0.0.0.0 255.255.255.240 U 0 0 0 eth1 192.168.31.192 172.16.1.2 255.255.255.224 UG 0 0 0 eth0 172.16.1.0 0.0.0.0 255.255.255.0 U 0 0 0 eth0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 172.16.1.1 0.0.0.0 UG 0 0 0 eth0 root@cdrouter:~# iptables -nL -t nat Chain PREROUTING (policy ACCEPT) target prot opt source destination DNAT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5222 to:192.168.31.1 Chain POSTROUTING (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination ################################################################################################## PONTA B root@cdrouter:~# ifconfig eth0 Link encap:Ethernet HWaddr 00:90:CC:2F:28:6D inet addr:192.168.31.193 Bcast:192.168.31.223 Mask:255.255.255.224 wlan0 Link encap:Ethernet HWaddr 00:0E:2E:24:7A:9C inet addr:172.16.1.2 Bcast:172.16.255.255 Mask:255.255.255.0 root@cdrouter:~# route -n Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.31.0 172.16.1.5 255.255.255.240 UG 0 0 0 wlan0 192.168.31.192 0.0.0.0 255.255.255.224 U 0 0 0 eth0 172.16.1.0 0.0.0.0 255.255.255.0 U 0 0 0 wlan0 127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo 0.0.0.0 172.16.1.1 0.0.0.0 UG 0 0 0 wlan0 root@cdrouter:~# iptables -t nat -nL Chain PREROUTING (policy ACCEPT) target prot opt source destination DNAT tcp -- 0.0.0.0/0 0.0.0.0/0 tcp dpt:5222 to:192.168.31.11 Chain POSTROUTING (policy ACCEPT) target prot opt source destination Chain OUTPUT (policy ACCEPT) target prot opt source destination ################################################################################################## -- -------------------------------------------------- °v° Flávio Alexandre dos Reis /( )\ Juiz de Fora - MG ^ ^ Linux user #481115 Ubuntu user #24388 -- Mais sobre o Ubuntu em português: http://www.ubuntu-br.org/comece Lista de discussão Ubuntu Brasil Histórico, descadastramento e outras opções: https://lists.ubuntu.com/mailman/listinfo/ubuntu-br