All these machines seem to be on the same subnet. Now this gives me the impression that when you try to ping the machines will assume that they are on the same segment as the machine they are trying to ping and thus nothing will get there. What is the output of netstat -rn? On Sat, 28 Apr 2001, Thomas Kotzian wrote: > i stops at the firewall - both sides see the firewall but they can't get > OVER/THROUGH it. > > ThomasK. > > ----- Original Message ----- > From: "semat" <semat@wawa.eahd.or.ug> > To: "Thomas Kotzian" <thomasko321d@gmx.at> > Cc: <linux-net@vger.kernel.org> > Sent: Saturday, April 28, 2001 7:16 PM > Subject: Re: Routing same subnet problem > > > > If you do a traceroute where does it stop? > > > > On Sat, 28 Apr 2001, Thomas Kotzian wrote: > > > > > I have a router (later it should serve as firewall). > > > > > > eth0: xxx.xxx.xxx.7/25 (to external router(xxx.xxx.xxx.1/25)) > > > eth1: xxx.xxx.xxx.8/25 (to DMZ) > > > > > > xxx.xxx.xxx.xxx are official internet addresses. > > > > > > network environment: > > > > > > INTERNET > > > | > > > | > > > +--------+ > > > |external| > > > | router | > > > +--------+ xxx.xxx.xxx.1/25 > > > | > > > | > > > +--------+ xxx.xxx.xxx.7/25 > > > |firewall| > > > | | > > > +--------+ xxx.xxx.xxx.8/25 > > > | > > > | > > > DMZ > > > > > > route of the firewall: > > > xxx.xxx.xxx.1 eth0 > > > xxx.xxx.xxx.0 eth1 > > > default xxx.xxx.xxx.1 > > > > > > with this configuration i can ping from the firewall the router and the > > > computers in the DMZ. but I can't get from DMZ to external router. > > > > > > ip_forward is "1". > > > linux-kernel 2.2.19 > > > > > > what do i have to do to have a DMZ without bridging? - how do i have to > > > configure routing. - please help! > > > > > > Sorry for my bad english > > > > > > Thomas K. > > - : send the line "unsubscribe linux-net" in the body of a message to majordomo@vger.kernel.org
