NetFilter
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Forwarding Problem

from [Javier A Toledano] [Permanent Link][Original]
To: netfilter@lists.netfilter.org
Subject: Forwarding Problem
From: "Javier A Toledano" <jatoledano@gmail.com>
Date: Tue, 12 Dec 2006 09:53:45 -0300
Delivered-to: sp-com-lists@consult.net
Delivered-to: netfilter-list1@securepoint.com
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition; b=o6emzryN2GH/Z2H0gIPLsNBEvcUYAfKgCyG6p3kqCUHIlu/RCnnw+BLkRRidnLUpQiVAGaMcC211faxy2xDf+F5eXHE6AdIS9HJZdLsg01mUjzv2aAIUNrtU1ejGcscljFd1sW/ZXnYniOi0SWvWbtmIYn6JJdIzs2XBIas0agg=
List-archive: </pipermail/netfilter>
List-help: <mailto:netfilter-request@lists.netfilter.org?subject=help>
List-id: General discussion and user questions <netfilter.lists.netfilter.org>
List-post: <mailto:netfilter@lists.netfilter.org>
List-subscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=subscribe>
List-unsubscribe: <https://lists.netfilter.org/mailman/listinfo/netfilter>, <mailto:netfilter-request@lists.netfilter.org?subject=unsubscribe>
Sender: netfilter-bounces@lists.netfilter.org 
Routing Problem


        
  Internet
        |
        |
DSL Router with NAT Enabled
        192.168.93.2/24
                                 |
                  |                     
                  |
                  |
        192.168.93.1/24 (eth1)
                  |                             
Linux Multihomed Router -- 10.0.0.25/8 (eth0) ------------------10.0.0.1 (host)
                  |               |
                  192.168.10.2/24 (eth2)
                  |
                  |
                  |
                  |
                192.168.10.49 (host)

                                


The linux is running Centos 4.2. I have 3 ethernet cards, eth1
(davicom Semiconductor, Inc 21x4x DEC -Tulip Compatible), eth0 (VIA
Technologies, Ic VT6105 Rhine III)
Eth2 (intel Corporation 82547Gi Gigabit Ethernet Controller)


I don't have any rules of iptables applied to the kernel.


the content of sysctl.conf is below:

# Kernel sysctl configuration file for Red Hat Linux
#
# For binary values, 0 is disabled, 1 is enabled.  See sysctl(8) and
# sysctl.conf(5) for more details.

# Controls IP packet forwarding
net.ipv4.ip_forward = 1

# Controls source route verification
net.ipv4.conf.default.rp_filter = 0

# Do not accept source routing
net.ipv4.conf.default.accept_source_route = 0

# Controls the System Request debugging functionality of the kernel
kernel.sysrq = 0

# Controls whether core dumps will append the PID to the core filename.
# Useful for debugging multi-threaded applications.
kernel.core_uses_pid = 1


The problem is that forwarding is enabled but when I try to probe
connectivity from a host in the 10.0.0.0 net , eg 10.0.0.1 making an
echo request
to a host in 192.168.10.0 net , eg 192.168.10.49 the icmp packets
arrive to the linux box (interface eth0) but don't traverset it.
After I iniate an echo request from 192.168.10.49 to 10.0.0.1, the
packets iniatated in 10.0.0.0 net starts to traverse the router
magically.
It seems that It needs a packet from the 192.168.10.0 to start working.

I would appreciate any idea.
Thanks in advance.

Javier Toledano
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: Routing & NAT Problem take #2, ArcosCom Linux User
Next by Date:  Re: is it possible to nat to the routed IP?, Zhen Zhou
Previous by Thread:  Routing & NAT Problem take #2, Matt
Next by Thread:  Re: Forwarding Problem, Grant Taylor
Indexes:  [Date] [Thread] [Top] [All Lists]