I'm trying to implement simple untagged vlans on our switch and have
misconfigured something..
ISP gw is on the default vlan1 (untagged)
Router
eth1 is setup on the switch with default vlan1 and member of vlan4.
eth0 is default vlan4 which connects to the clients that are all
default members of vlan4
eth0 is x.x.x.86/28 This is what clients are connecting to as their gw..
(no nat)
eth1 is x.x.x.82/26
default route is .65/26 dev eth1
If client is default vlan4, but a member of vlan1 then it all works..
As soon as I remove client from being a member of vlan1.. The router
stops forwarding. Is this to be expected and how can I correct this?
I've tried adding a rule like this for the test client which is on .87
# Trying to fix vlan
iptables -A FORWARD -i ${WAN} -d x.x.x.87 -o ${LAN} -j ACCEPT
iptables -A FORWARD -i ${LAN} -s x.x.x.87 -o ${WAN} -j ACCEPT
I see the packets from the lan trying to get out, but on ingress I don't
see them..
Thanks in advance.
Christopher
_______________________________________________
LARTC mailing list
LARTC@xxxxxxxxxxxxxxx
http://mailman.ds9a.nl/cgi-bin/mailman/listinfo/lartc
