Re: updated iptables doesn't work with old rules

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

Rob Sterenborg wrote:

> On Fri, February 24, 2006 11:14, Daniel Nogradi wrote:
>>DEVICE=eth1
>>BOOTPROTO=none
>>BROADCAST=192.168.10.255
>>IPADDR=192.168.10.101
>>NETMASK=255.255.255.0
>>NETWORK=192.168.10.0
>>ONBOOT=yes
>>TYPE=Ethernet
>>GATEWAY=192.168.10.254
> 
> 
> This NIC seems to be connected to your hub/switch/machine B.
> I'd say, because machine A -> internet works, put this one on the
> 192.168.11.0/24 network and machine B also. (You don't want to change things
> that are already working.)
> 
> Change :
> BROADCAST=192.168.11.255
> IPADDR=192.168.11.1
> NETWORK=192.168.11.0
> GATEWAY=192.168.11.1
> 
> 
>>DEVICE=eth0
>>BROADCAST=192.168.10.255
>>IPADDR=192.168.10.105
>>NETMASK=255.255.255.0
>>NETWORK=192.168.10.0
>>TYPE=Ethernet
>>ONBOOT=yes
>>GATEWAY=192.168.10.254
> 
> 
> Because you can use the internet on machine A, I suppose the config for eth0
> is correct.

Daniel, you should try Rob's advice and see if you can get further. Here are
some my two cents. I've never done a PPPoE/DSL in Linux but I noticed a few odd
things about your configuration.

> 
>>USERCTL=yes
>>BOOTPROTO=dialup
>>NAME=DSLppp0
>>DEVICE=ppp0
>>TYPE=xDSL
>>ONBOOT=yes
>>PIDFILE=/var/run/pppoe-adsl.pid
>>FIREWALL=MASQUERADE
>>PING=.
>>PPPOE_TIMEOUT=80
>>LCP_FAILURE=3
>>LCP_INTERVAL=20
>>CLAMPMSS=1412
>>CONNECT_POLL=6
>>CONNECT_TIMEOUT=60
>>DEFROUTE=yes
>>SYNCHRONOUS=no
>>ETH=eth1
>>PROVIDER=DSLppp0
>>USER=02024784362
>>PEERDNS=yes
>>DEMAND=no
>>PERSIST=no

The line ETH=eth1 suggests to me that your PPP connection is bound to eth1.
However, in your previous messages you state that eth1 is on the private side
(attached to machine B) and eth0 is on the public side. This seems odd.

Additionally, resources on the net regarding PPP connections (usually bound to
eth0) has a similar ppp0 configuration as yours. But the associated interface
(usually eth0) for a ppp0 connection is usually down and not configured.

DEVICE=eth0
ONBOOT=no

For example, the section "IP Address Assignment for a Direct DSL Connection" of
URL http://www.siliconvalleyccie.com/linux-hn/network-linux.htm
[Index of Archives]     [Linux Netfilter Development]     [Linux Kernel Networking Development]     [Netem]     [Berkeley Packet Filter]     [Linux Kernel Development]     [Advanced Routing & Traffice Control]     [Bugtraq]

  Powered by Linux