On Tuesday 09 September 2003 14:07, [EMAIL PROTECTED] wrote: > Hi, > |172.17.2.30 Masquerade t this interface > Kernel IP routing table > Destination Gateway Genmask Flags MSS Window irtt > Iface > 172.30.0.0 172.16.0.10 255.255.0.0 UG 40 0 0 > eth1 > 172.16.0.0 0.0.0.0 255.255.0.0 U 40 0 0 > eth1 > 172.17.0.0 0.0.0.0 255.255.0.0 U 40 0 0 > eth0 > 0.0.0.0 172.17.1.10 0.0.0.0 UG 40 0 0 > eth0 > B --> C(172.30.0.1) : Fail > B --> D : Fail If I understand correctly 172.30.0.0/16 and 172.17.0.0/16 are on different physical networks, and A is supposed to link between them?
The linux box probably forwards your packets from B to D, however, D has no idea how to get back to B, as 172.30.x.x is out of it's subnet, and unless some other routing rules are specified, it will just go to the default gateway, if there's one(which I assume is not A in our case). Here's what you can do: A) Make sure the 172.30.x.x network hosts route via A for 172.17.x.x network in some way. B) NAT(Masquerade) the interface, so traffic from 172.17.x.x to 172.30.x.x are mapped accordingly, see iptables documentation for more information. ================================================================= To unsubscribe, send mail to [EMAIL PROTECTED] with the word "unsubscribe" in the message body, e.g., run the command echo unsubscribe | mail [EMAIL PROTECTED]
