From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from lists.gentoo.org ([140.105.134.102] helo=robin.gentoo.org) by nuthatch.gentoo.org with esmtp (Exim 4.62) (envelope-from ) id 1HD1yT-0005d1-UU for garchives@archives.gentoo.org; Fri, 02 Feb 2007 17:13:22 +0000 Received: from robin.gentoo.org (localhost [127.0.0.1]) by robin.gentoo.org (8.13.8/8.13.8) with SMTP id l12HC5iu031691; Fri, 2 Feb 2007 17:12:05 GMT Received: from wx-out-0506.google.com (wx-out-0506.google.com [66.249.82.225]) by robin.gentoo.org (8.13.8/8.13.8) with ESMTP id l12H7xP3027080 for ; Fri, 2 Feb 2007 17:08:00 GMT Received: by wx-out-0506.google.com with SMTP id i30so1482668wxd for ; Fri, 02 Feb 2007 09:08:00 -0800 (PST) DomainKey-Signature: a=rsa-sha1; c=nofws; d=gmail.com; s=beta; h=received:message-id:date:from:to:subject:mime-version:content-type; b=MDaIPBzRggj4pSNlOa0RrB6uyzL/TSGquMLTsI4gXSrEZ1mmKgOS0qA+CiuBdc4LVEQUYn0aOgdY1Aw6MPHSBqFqArR3bIuSnrFe1Zu+si9ksFx1QYMN9chqrpTSBav1HFS+xJgoi8FkFqRoqY7XESNSfik1ghbVBdKhH0QRbAQ= Received: by 10.90.63.16 with SMTP id l16mr5328011aga.1170436079842; Fri, 02 Feb 2007 09:07:59 -0800 (PST) Received: by 10.90.100.19 with HTTP; Fri, 2 Feb 2007 09:07:59 -0800 (PST) Message-ID: <7225537e0702020907w1598350erf823adc50fe56fc9@mail.gmail.com> Date: Fri, 2 Feb 2007 12:07:59 -0500 From: "Shawn Singh" To: gentoo-user@lists.gentoo.org Subject: [gentoo-user] Question about /etc/conf.d/net entry Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_Part_24722_3245933.1170436079799" X-Archives-Salt: ba8f4893-dac2-431e-9883-bde4ef5d7cd8 X-Archives-Hash: 297961ef407f6a4bdd020f58744f446f ------=_Part_24722_3245933.1170436079799 Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Content-Disposition: inline Hello list, I've got my /etc/conf.d/net setup as follows: # Interface Handler modules=( "ifconfig" ) # eth0 (WAN) config config_eth0=( "dhcp" ) # eth1 (LAN) config config_eth1=( "192.168.1.1 netmask 255.255.255.0 broadcast 192.168.1.255" ) routes_eth1=( "192.168.1.0 via 192.168.1.1" ) # the idea here is that I wish to have all traffic intended for hosts on 192.168.1.0 pass through 192.168.1.1. Here's the output from ifconfig eth1: eth1 Link encap:Ethernet HWaddr 00:10:B5:0E:D6:E9 inet addr:192.168.1.1 Bcast:192.168.1.255 Mask:255.255.255.0 UP BROADCAST MULTICAST MTU:1500 Metric:1 RX packets:0 errors:0 dropped:0 overruns:0 frame:0 TX packets:0 errors:0 dropped:0 overruns:0 carrier:0 collisions:0 txqueuelen:1000 RX bytes:0 (0.0 b) TX bytes:0 (0.0 b) Interrupt:10 Base address:0x6c00 This is my routing table: Kernel IP routing table Destination Gateway Genmask Flags Metric Ref Use Iface 192.168.1.0 * 255.255.255.0 U 0 0 0 eth1 c-71-203-144-0. * 255.255.252.0 U 0 0 0 eth0 loopback * 255.0.0.0 U 0 0 0 lo default c-71-203-144-1. 0.0.0.0 UG 0 0 0 eth0 One odd thing is, if I run mii-tool eth1, I get: eth1: no link eth1 is connected to my client machine via crossover cable (the wire scheme A end is plugged into eth1, and the wire scheme b end is plugged into the client machine) I'm experiencing difficulty where my client can't get to the Internet (the pages just time out), and I can't ping the gateway (192.168.1.1) from the client. Also, from the firewall, I can't ping the client machine ( 192.168.1.2). Pings from the firewall to the client result in Destination Unreachable, and if I remember correctly, pings from the client to the firewall just time out. I'm running shorewall (v 3.0.8), so I've tried shutting it down (shorewall clear) to eliminate that as an option, but still not getting anywhere. .config has the following entries in it, please let me know if there are others that you need to see. CONFIG_IP_ADVANCED_ROUTER=y CONFIG_NETFILTER=y CONFIG_IP_NF_NAT=y Thanks, Shawn "Doing linear scans over an associative array is like trying to club someone to death with a loaded Uzi." --Larry Wall ------=_Part_24722_3245933.1170436079799 Content-Type: text/html; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit Content-Disposition: inline Hello list,

I've got my /etc/conf.d/net setup as follows:

# Interface Handler
modules=( "ifconfig" )

# eth0 (WAN) config
config_eth0=( "dhcp" )

# eth1 (LAN) config
config_eth1=( "192.168.1.1 netmask 255.255.255.0 broadcast 192.168.1.255" )
routes_eth1=( " 192.168.1.0 via 192.168.1.1" ) # the idea here is that I wish to have all traffic intended for hosts on 192.168.1.0 pass through 192.168.1.1.

Here's the output from ifconfig eth1:

eth1      Link encap:Ethernet  HWaddr 00:10:B5:0E:D6:E9
          inet addr:192.168.1.1  Bcast: 192.168.1.255  Mask:255.255.255.0
          UP BROADCAST MULTICAST  MTU:1500  Metric:1
          RX packets:0 errors:0 dropped:0 overruns:0 frame:0
          TX packets:0 errors:0 dropped:0 overruns:0 carrier:0
          collisions:0 txqueuelen:1000
          RX bytes:0 (0.0 b)  TX bytes:0 (0.0 b)
          Interrupt:10 Base address:0x6c00

This is my routing table:

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
192.168.1.0     *               255.255.255.0   U     0      0        0 eth1
c-71-203-144-0. *               255.255.252.0    U     0      0        0 eth0
loopback        *               255.0.0.0       U     0      0        0 lo
default         c-71-203-144-1. 0.0.0.0         UG    0      0        0 eth0

One odd thing is, if I run mii-tool eth1, I get:
eth1: no link

eth1 is connected to my client machine via crossover cable (the wire scheme A end is plugged into eth1, and the wire scheme b end is plugged into the client machine)

I'm experiencing difficulty where my client can't get to the Internet (the pages just time out), and I can't ping the gateway (192.168.1.1) from the client. Also, from the firewall, I can't ping the client machine ( 192.168.1.2).

Pings from the firewall to the client result in Destination Unreachable, and if I remember correctly, pings from the client to the firewall just time out.

I'm running shorewall (v 3.0.8), so I've tried shutting it down (shorewall clear) to eliminate that as an option, but still not getting anywhere.

.config has the following entries in it, please let me know if there are others that you need to see.

CONFIG_IP_ADVANCED_ROUTER=y
CONFIG_NETFILTER=y
CONFIG_IP_NF_NAT=y

Thanks,

Shawn

"Doing linear scans over an associative array is like trying to club someone to death with a loaded Uzi."
--Larry Wall ------=_Part_24722_3245933.1170436079799-- -- gentoo-user@gentoo.org mailing list