[gentoo-user] Adding gw route in /etc/conf.d/net

[gentoo-user] Adding gw route in /etc/conf.d/net

[Harry Putnam]

I've recently added a second nic and a sort of semi-dmz machine on a
new subnet so my gentoo box now has 2 nics with addresses:
192.168.0.4  and 192.168.1.2.  That second one was installed just to
talk to the semi-dmz machine also with 2 nics at 192.168.0.19 amd
192.168.1.1

I say semi because this is really just for my own experimentation.
I'm sending everything that hits my router/firewall (NETGEAR FVS-318) 
thru to that machine on 192.168.0.19.  Its running openbsd and PF.

I wanted it sort of isolated so my PF rules block all traffic on  
192.168.0.19 from the rest of the local network and talks only to the
incoming stuff from the netgear router.

I don't really want to go on and on into a description of this but cut
right to the chase:

Some things endup trying to use the new 192.168.1.2 address for
outgoing, like firing up a webbrowser which files since its the wrong
network. 

/etc/conf.d/net currently looks like this:

  config_eth0=( "192.168.0.4 netmask 255.255.255.0" )
  
  routes_eth0=(
     "default via 192.168.0.20"
  )
  config_eth1=( "192.168.1.2 netmask 255.255.255.0" )

I wondering if that is the reason for my troubles.  maybe I need to
add a static route for config_eth1? 

Or something else like changing the netmask to 255.255.0.0
So its all one network (192.168.0/16)

I'm a little over my head here so would like to hear from some
experienced networking people as to how to go at this.

I know how to set a static route using the route command ( I think)
but not sure how to in /etc/conf.d/net.

Just to see if I'm clear off base.
  I'm thinking something like:
  
   route add 192.168.1.1 192.168.1.2

would set a static route from gentoo 192.168.1.2 to obsd 192.168.1.1

-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Adding gw route in /etc/conf.d/net

[Zac Slade]

On Monday 27 February 2006 20:06, Harry Putnam wrote:
> /etc/conf.d/net currently looks like this:
>
>   config_eth0=( "192.168.0.4 netmask 255.255.255.0" )
>
>   routes_eth0=(
>      "default via 192.168.0.20"
>   )
>   config_eth1=( "192.168.1.2 netmask 255.255.255.0" )
With both interfaces up what is the output of "ip route"?  I don't see 
anything wrong with the configuration really, both networks are in different 
subnets so they should be seperate.  However you may be getting a default 
route for eth1.  You really don't need one, from the description you give you 
don't need a route at all for eth1.  If all the computers on the 
192.168.0.0/24 network can all see each other's MAC addresses then there is 
no problem.

> I wondering if that is the reason for my troubles.  maybe I need to
> add a static route for config_eth1?
This should not be required for your setup as I understand it.  I'd be realy 
interested in your arp table too, arp -a.
-- 
Zac Slade
krakrjak@volumehost.net
ICQ:1415282 YM:krakrjak AIM:ttyp99
-- 
gentoo-user@gentoo.org mailing list

[gentoo-user] Re: Adding gw route in /etc/conf.d/net

[Harry Putnam]

Zac Slade <krakrjak@volumehost.net> writes:

> With both interfaces up what is the output of "ip route"?  I don't
> see anything wrong with the configuration really, both networks are
> in different subnets so they should be seperate.  However you may be
> getting a default route for eth1.  You really don't need one, from
> the description you give you don't need a route at all for eth1.  If
> all the computers on the 192.168.0.0/24 network can all see each
> other's MAC addresses then there is no problem.

Note, I've included the requested outputs for completeness but:

It all cleared up after a reboot.  I didn't mention I made a domain
name switch preceding the reported problem too.  I suspect my
nameserver cache hadn't had time to clear up (I have pretty long Time
To Live values set). Although I really don't now if that would be an
issue.

ip route
192.168.1.0/24 dev eth1  proto kernel  scope link  src 192.168.1.2 
192.168.0.0/24 dev eth0  proto kernel  scope link  src 192.168.0.4 
127.0.0.0/8 dev lo  scope link 
default via 192.168.0.20 dev eth0 

>> I wondering if that is the reason for my troubles.  maybe I need to
>> add a static route for config_eth1?

> This should not be required for your setup as I understand it.  I'd be realy 
> interested in your arp table too, arp -a.

 arp -a 
fw.local.lan (192.168.0.20) at 00:09:5B:01:2F:E4 [ether] on eth0
fwobsd.local.lan (192.168.0.19) at 00:10:B5:91:85:88 [ether] on eth0

-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Re: Adding gw route in /etc/conf.d/net

[Zac Slade]

On Tuesday 28 February 2006 05:30, Harry Putnam wrote:
> It all cleared up after a reboot.  I didn't mention I made a domain
> name switch preceding the reported problem too.  I suspect my
> nameserver cache hadn't had time to clear up (I have pretty long Time
> To Live values set). Although I really don't now if that would be an
> issue.
That's great!  Too bad you didn't get to the bottom of it, but fixed is better 
than broken.

> ip route
> 192.168.1.0/24 dev eth1  proto kernel  scope link  src 192.168.1.2
> 192.168.0.0/24 dev eth0  proto kernel  scope link  src 192.168.0.4
> 127.0.0.0/8 dev lo  scope link
> default via 192.168.0.20 dev eth0
This is proper.  Only one gateway and it's through the eth0 device.

>  arp -a
> fw.local.lan (192.168.0.20) at 00:09:5B:01:2F:E4 [ether] on eth0
> fwobsd.local.lan (192.168.0.19) at 00:10:B5:91:85:88 [ether] on eth0
It's interesting here that you don't see anything on 192.168.1.0/24.  Perhaps 
nothing is connected to that interface right now?

Congrats on the problem being fixed.
-- 
Zac Slade
krakrjak@volumehost.net
ICQ:1415282 YM:krakrjak AIM:ttyp99
-- 
gentoo-user@gentoo.org mailing list

[gentoo-user] Re: Adding gw route in /etc/conf.d/net

[Harry Putnam]

Zac Slade <krakrjak@volumehost.net> writes:

>>  arp -a
>> fw.local.lan (192.168.0.20) at 00:09:5B:01:2F:E4 [ether] on eth0
>> fwobsd.local.lan (192.168.0.19) at 00:10:B5:91:85:88 [ether] on
>> eth0

> It's interesting here that you don't see anything on 192.168.1.0/24.
> Perhaps nothing is connected to that interface right now?

The interface had machines on both ends but no traffic had occured.
That arp -a was run faily soon after a reboot.

arp -a (after ssh to 192.168.1.1)

? (192.168.1.1) at 00:04:75:9B:E5:0D [ether] on eth1
harvey.local.lan (192.168.0.22) at 00:11:2F:92:54:E7 [ether] on eth0
fw.local.lan (192.168.0.20) at 00:09:5B:01:2F:E4 [ether] on eth0
fwobsd.local.lan (192.168.0.19) at 00:10:B5:91:85:88 [ether] on eth0

Do you know what the first line notation means?

-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Re: Adding gw route in /etc/conf.d/net

[Zac Slade]

On Tuesday 28 February 2006 16:12, Harry Putnam wrote:
> arp -a (after ssh to 192.168.1.1)
>
> ? (192.168.1.1) at 00:04:75:9B:E5:0D [ether] on eth1
> harvey.local.lan (192.168.0.22) at 00:11:2F:92:54:E7 [ether] on eth0
> fw.local.lan (192.168.0.20) at 00:09:5B:01:2F:E4 [ether] on eth0
> fwobsd.local.lan (192.168.0.19) at 00:10:B5:91:85:88 [ether] on eth0
>
> Do you know what the first line notation means?
Yeah the first field is the hostname of the remote system.  If it's not in 
your /etc/hosts file or in DNS then it will show up with a ?.  It shows that 
eth1 is seeing another host at 192.168.1.1 and eth0 shows three hosts 
192.168.0.10,20,22 and each of those it knows their hostname.
-- 
Zac Slade
krakrjak@volumehost.net
ICQ:1415282 YM:krakrjak AIM:ttyp99
-- 
gentoo-user@gentoo.org mailing list