[ << | Thread Index | >> ]    [ << | Date Index | >> ]

Subject: routing confusion
From: "Mike" <mikeeo,AT,msn,DOT,com>
Date: Mon, 1 Jul 2002 15:03:05 +0200



Hey guys I have a small routing problem wonder if 
anyone could take a crack at it:
?
Machine A:? (Linux 2.2.20)
?
# remote internal (fake) ip address 
ptpaddr???????? 192.168.10.3# my 
cipe (fake) ip address 
ipaddr????????? 
192.168.3.99# my real ip address and cipe port 
me???????????? 
<ip>:9001 # remote real ip address and cipe port 
peer???????????<ip>:9000#unique 
128 bit key 
key???????????? 
xxxxxxxxxxxxxxxxxxxxxxx
cttl 64
?
Machine B:? (Win32-Cipe)
?
ptpaddr 192.168.3.99
ipaddr??? 192.168.10.3
me?????? 
<ip>:9000
<FONT face=Arial 
size=2>peer???????????<ip>:9001
?
key??? xxxxxxxxxxxxxxxx
?
ping works fine across the cipe interfaces?no 
problems, the subnet mask on the Win32-CIPE IP is 192.168.10.3/255.255.0.0 in 
the?Win2k adapter settings
?
Linux has?3 physical?interfaces 

?
eth0 192.168.0.4/255.255.255.0
<FONT face=Arial 
size=2>eth1??192.168.2.1/255.255.255.0
eth2?? 
<internetip>?
?
route -n gives :
Destination???? 
Gateway???????? 
Genmask???????? Flags Metric 
Ref??? Use Iface192.168.10.3??? 
0.0.0.0???????? 255.255.255.255 
UH??? 0????? 
0??????? 0 
cipcb0192.168.100.0?? 
0.0.0.0???????? 
255.255.255.0?? U???? 
0????? 0??????? 0 
eth2192.168.2.0???? 
0.0.0.0???????? 
255.255.255.0?? U???? 
0????? 0??????? 0 
eth1192.168.0.0???? 
0.0.0.0???????? 
255.255.255.0?? U???? 
0????? 0??????? 0 
eth0192.168.10.0??? 
0.0.0.0???????? 
255.255.255.0?? U???? 
0????? 0??????? 0 
cipcb0<internetip>??? 
0.0.0.0???????? 
255.255.248.0?? U???? 
0????? 0??????? 0 
eth2127.0.0.0?????? 
0.0.0.0???????? 
255.0.0.0?????? U???? 
0????? 0??????? 0 
lo0.0.0.0???????? 
<internetip>?????? 
0.0.0.0???????? UG??? 
0????? 0??????? 0 
eth2
?
the Win2k route entry I did like this:
?
route add 192.168.0.0 mask 255.255.0.0 192.168.10.3 
and it accepted the route
?
from the Win32-CIPE I cannot ping anything on the 
192.168.2.x net or the 192.168.0.x net I have forwarding enabled and with 
ipchains and 192.168.0.0 & 192.168.2.0 can ping each other.
?
ipchain rules are as follows:
?
ipchains -P forward DENY
ipchains -A output -s 192.168.0.0/16 -d 
192.168.0.0/16 -j ACCEPTipchains -A input -s 192.168.0.0/16 -d 
192.168.0.0/16 -j ACCEPT ipchains -A forward -s 192.168.0.0/16 -d 
192.168.0.0/16 -j ACCEPT
?
That should allow anything on the 192.168.x.x net 
to pass
?
pinging from 192.168.10.3 to 192.168.3.99 works but 
any other net fails.
?
any ideas? arp issues?
?
thanks
?
-Mike




[ << | Thread Index | >> ]    [ << | Date Index | >> ]