Koozali.org: home of the SME Server

Legacy Forums => General Discussion (Legacy) => Topic started by: Walt on January 11, 2000, 11:06:48 PM

Title: IP question multiple networks?
Post by: Walt on January 11, 2000, 11:06:48 PM

Can I have multiple networks going through E-Smith?
I have 2 networks
192.168.1.x and 192.168.2.x
there is a router between them.
Can the 192.168.2.x net pass through the e-smith server?
The e-smith address is 192.168.1.3
Im conserned that it might not except the 192.168.2.x clients?

Thanks
Walt

Title: RE: IP question multiple networks?
Post by: Charlie Brady on January 13, 2000, 07:06:53 AM

Walt wrote:

> Can I have multiple networks going through E-Smith? I have 2
> networks 192.168.1.x and 192.168.2.x there is a router between
> them. Can the 192.168.2.x net pass through the e-smith server?
> The e-smith address is 192.168.1.3 Im conserned that it might
> not except the 192.168.2.x clients?

Yes, you are quite right to be so concerned. The e-smith will
not be able to route packets to the 192.168.2.x network.

You will need to add a static route to 192.168.2.x via your router, and you will need to change /etc/e-smith/templates/etc/rc.d/init.d/masq to add masquerading
for the 192.168.2.x network. You will also need to change
/etc/e-smith/templates/etc/hosts.allow to allow access to various services from clients on your second network.

And there will be a few other access lists as well - e.g. squid config, samba config.

Turn the templates into config files using:

/sbin/e-smith/signal-event console-save

The bottom line is that it is possible, but non-trivial, to get e-smith working in your situation. Your situation doesn't match
the e-smith design spec very exactly.

Have fun :-)

Charlie

Title: RE: IP question multiple networks?
Post by: Walt on January 14, 2000, 07:37:15 AM

I looked at etc/rc.d/init.d/masq and edited it adding a ipchains --append forward statment. I used the line above it as an exaple

ipchains --append forward -j MASQ --source 192.168.1.0/255.255.255.0 --destination 0.0.0.0/0
ipchains --append forward -j MASQ --source 192.168.2.0/255.255.255.0 --destination 0.0.0.0/0

is that right?? was there more to add or is it all wrong?

then I looked at the ect/hosts.allow and couldn't see anything to add?
Is there some thing?

I really appriciate the help!!!!!!!!!!!!!!!

Walt

Title: RE: IP question multiple networks?
Post by: Charlie Brady on January 16, 2000, 11:39:00 AM

Walt wrote:

> I looked at etc/rc.d/init.d/masq and edited it adding a
> ipchains --append forward statment. I used the line above it as
> an exaple
>
> ipchains --append forward -j MASQ --source
> 192.168.1.0/255.255.255.0 --destination 0.0.0.0/0
> ipchains --append forward -j MASQ --source
> 192.168.2.0/255.255.255.0 --destination 0.0.0.0/0
>
> is that right??

That looks right to me.

> then I looked at the ect/hosts.allow and couldn't see anything
> to add? Is there some thing?

You will need to add "192.168.2.0/255.255.255.0, " wherever it says
"192.168.1.0/255.255.255.0". You will also need to find thinks to change
in /etc/smb.conf and /etc/squid/squid.conf, and /etc/httpd/conf/* - and remember that these files are all generated from templates.

Charlie