[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

3 nic and routing

Hi,

I am trying to setup a linux (debian potato, kernel
2.2.19) box as a firewall . I have 3 nics on it.

I have got a bunch of 32 public ips from my
isp(210.212.236.96/27). I have subdivided this into
groups of 16 each and one group is given for my dmz
(210.212.236.112/28)

First card eth0(210.212.236.97) connected to my cisco
router. 2rd card (eth1) to internal lan with pvt ips. 
Third(eth2) (210.212.236.113) one to a hub which
connects to my machines with public ips (my dmz).my
dmz has  proxy/mail/web servers.

My router ip is 210.212.236.105

I am able to ping to router and access net from the
firewall but unable to ping even the router
(210.212.236.105) from other machines connected
to eth1 or eth2. From all machines, I can ping all
cards in the firewall.

This is route output:

Destination     Gateway         Genmask         Flags
Metric Ref    Use Iface
210.212.236.112 *               255.255.255.240 U    
0      0        0 eth2
210.212.236.96  *               255.255.255.240 U    
0      0        0 eth0
192.168.100.0   *               255.255.255.0   U    
0      0        0 eth1
default         210.212.236.105 0.0.0.0         UG   
0      0        0 eth0
For example, if I try to traceroute to
210.212.236.105, it reaches the correct card in the
firewall but from there it times out. (no ipchain
rules running right now).

Any suggestions ?

Suresh



=====
Suresh Kumar R.
Assistant Professor
Dept of Electronics & Communication
College of Engineering, 
Thiruvananthapuram - 695 016, INDIA
Email : sureshkumar@ieee.org
Phone : 91-471-515660/515653/595634

__________________________________________________
Do You Yahoo!?
Yahoo! Tax Center - online filing with TurboTax
http://taxes.yahoo.com/


-- 
To UNSUBSCRIBE, email to debian-firewall-request@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
Reply to: