This is a multi-part message in MIME format. ------=_NextPart_000_0002_01C2B0D2.3CA285E0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hi all, I've two RFC1918 networks with a RedHat Linux 7.3 box in the middle. They are 10.4.2.0 and 10.4.7.0. There are a couple of boxes on each network, but I can't ping a box on one network from the other. Destination Gateway Genmask Flags Metric Ref Use Iface 217.78.4.128 * 255.255.255.192 U 0 0 0 eth2 10.4.7.0 * 255.255.255.0 U 0 0 0 eth3 10.4.2.0 * 255.255.255.0 U 0 0 0 eth0 192.168.200.0 * 255.255.255.0 U 0 0 0 eth1 127.0.0.0 * 255.0.0.0 U 0 0 0 lo default 217.78.4.190 0.0.0.0 UG 0 0 0 eth2 The above is the routing table of the machine. All iptables policies are set to accept. I can access the internet fine from the 192 and 10 networks, as masquerading is enabled on eth2. However, I do not want to masquerade the address from 10.4.2.0 onto 10.4.7.0 and vice-versa. Am I missing something obvious? Cheers, Dave. ------=_NextPart_000_0002_01C2B0D2.3CA285E0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <HTML><HEAD> <META HTTP-EQUIV=3D"Content-Type" CONTENT=3D"text/html; = charset=3Diso-8859-1"> <TITLE>Message</TITLE> <META content=3D"MSHTML 5.00.2919.6307" name=3DGENERATOR></HEAD> <BODY> <DIV> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D430563413-31122002>Hi = all,=20 </SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D430563413-31122002></SPAN></FONT> </DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D430563413-31122002>I've = two RFC1918=20 networks with a RedHat Linux 7.3 box in the middle.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D430563413-31122002>They = are 10.4.2.0=20 and 10.4.7.0. There are a couple of boxes on each = network,</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D430563413-31122002>but I = can't ping a=20 box on one network from the other.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D430563413-31122002></SPAN></FONT> </DIV> <DIV><FONT face=3DCourier size=3D2><SPAN=20 class=3D430563413-31122002>Destination =20 Gateway =20 Genmask Flags Metric=20 Ref Use Iface<BR>217.78.4.128 =20 * = =20 255.255.255.192 U = 0 =20 0 0=20 eth2<BR>10.4.7.0 =20 * = =20 255.255.255.0 U =20 0 = 0 0=20 eth3<BR>10.4.2.0 * &n= bsp; =20 = 255.255.255.0 U=20 0 =20 0 0 = eth0<BR>192.168.200.0 =20 * = =20 255.255.255.0 U =20 0 = 0 0=20 eth1<BR>127.0.0.0 =20 * = =20 255.0.0.0 U =20 0 = 0 0=20 lo<BR>default =20 217.78.4.190 =20 0.0.0.0 = UG =20 0 = 0 0=20 eth2<BR><FONT face=3DArial></FONT></SPAN></FONT></DIV> <DIV><FONT face=3DCourier size=3D2><SPAN = class=3D430563413-31122002><FONT=20 face=3DArial>The above is the routing table of the machine. All iptables = policies=20 are set to accept.</FONT></SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D430563413-31122002>I can = access the=20 internet fine from the 192 and 10 networks, as masquerading is enabled = on=20 eth2.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN = class=3D430563413-31122002>However, I do not=20 want to masquerade the address from 10.4.2.0 onto 10.4.7.0 = </SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D430563413-31122002>and=20 vice-versa.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN class=3D430563413-31122002>Am I = missing=20 something obvious?</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D430563413-31122002>Cheers,</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D430563413-31122002>Dave.</SPAN></FONT></DIV> <DIV><FONT face=3DArial size=3D2><SPAN=20 class=3D430563413-31122002></SPAN></FONT> </DIV></BODY></HTML> ------=_NextPart_000_0002_01C2B0D2.3CA285E0--
