I've been trying to add a second subnet (on a third NIC) to a pretty much vanilla smeserver box.
After bringing the card (eth2) up by adding the following to /etc/rc.local:
insmod airo
iwconfig eth2 ESSID WLAN
iwconfig eth2 mode ad-hoc
ifconfig eth2 192.168.2.252 netmask 255.255.255.0
(Yes, it's a wireless card but that's irrelevant, right?
)
I found that I had two routes to this subnet, one via eth0 and one via eth2. So I added a line to /etc/rc.local to delete that eth0 route:
route del -net 192.168.2.0/24 dev eth0
Once that is run, I can ping hosts out on any subnet attached to this box, including hosts on the second subnet.
However, this box will not act as a masquerading router for the second subnet. Nor will it respond to ICMP pings sent to it by hosts on the second subnet.
I've added the second subnet to "local networks" via server-manager but that doesn't make any difference to whether you can access the server via this interface. In fact, adding it like this re-establishes that extra route that I removed at the beginning.
/var/log/messages reports that the box is blocking connections arriving on this third interface.
I think the problem is to do with /etc/rc.d/init.d/masq or how iptables are set up. I think that because of the denylog reject messages created by connection attempts to this interface that are appearing in /var/log/messages.
But the second subnet *is* a member of the local networks so, in theory, it should be accepting all connections...
So, my question is: has anyone successfully gone through this process?
Thanks
Lee
3 Replies
2313 Views