[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Routing with 4 NICs breaks
- To: misc_(_at_)_openbsd_(_dot_)_org
- Subject: Routing with 4 NICs breaks
- From: Rob Foster <rob_(_dot_)_foster_(_at_)_gmail_(_dot_)_com>
- Date: Mon, 28 Feb 2005 21:02:46 -0500
- Reply-to: Rob Foster <rob_(_dot_)_foster_(_at_)_gmail_(_dot_)_com>
Hi,
I'm having a problem. I have 3 subnets connected to an openbsd 3.6 router.
internet_if = "dc0"
office_if = "ste3"
dmz_if = "ste2"
warroom_if = "ste0"
everything works from the office:
192.168.1.74# ping 192.168.0.3
Reply from 192.168.0.3: bytes=32 time<1ms TTL=63
192.168.1.74# ping 192.168.3.10
Reply from 192.168.3.10: bytes=32 time<1ms TTL=127
192.168.1.74# ping google.com
Reply from 216.239.57.99: bytes=32 time=111ms TTL=237
2 things break in the warroom:
192.168.3.10# ping 192.168.0.3
Request timed out.
192.168.3.10# ping 192.168.1.74
Reply from 192.168.1.74: bytes=32 time=6ms TTL=127
192.168.3.10# ping google.com
Reply from 216.239.57.99: bytes=32 time=111ms TTL=237
1 thing breaks in the dmz (yes, not quite a dmz right now):
192.168.0.3# ping 192.168.3.10
Request timed out.
192.168.0.3# ping 192.168.1.74
Reply from 192.168.1.74: bytes=32 time=6ms TTL=127
192.168.0.30# ping google.com
Reply from 216.239.57.99: bytes=32 time=111ms TTL=237
Why is this happening. Why can't the warroom talk to the dmz or the
internet while the office can?
Diagram:
[dmz] [internet]
| |
[openbsd router]
| |
[office] [warroom]
everyone should talk to everyone, until I change the pf ruleset!
-bash-3.00# uname -a
OpenBSD rackgateway 3.6 GENERIC#59 i386
-bash-3.00# route -n show
Routing tables
Internet:
Destination Gateway Flags Refs Use Mtu Interface
default x.y.176.1 UGS 0 11971160 - dc0
x.y.176/22 link#5 UC 0 0 - dc0
x.y.176.1 00:05:00:e1:f1:d2 UHLc 0 4 - dc0
x.y.177.61 127.0.0.1 UGHS 0 0 33224 lo0
127/8 127.0.0.1 UGRS 0 0 33224 lo0
127.0.0.1 127.0.0.1 UH 0 35302 33224 lo0
192.168.0/24 link#3 UC 0 0 - ste2
192.168.0.3 00:80:c6:ee:38:27 UHLc 0 142161872 - ste2
192.168.1/24 link#4 UC 0 0 - ste3
192.168.1.74 00:10:4b:c5:9a:00 UHLc 0 2838051 - ste3
192.168.3/24 link#1 UC 0 0 - ste0
192.168.3.10 00:50:da:81:46:7b UHLc 0 2290 - ste0
224/4 127.0.0.1 URS 0 0 33224 lo0
-bash-3.00# ifconfig -a
ste0: flags=8943<UP,BROADCAST,RUNNING,PROMISC,SIMPLEX,MULTICAST> mtu 1500
address: 00:05:5d:71:92:ec
media: Ethernet autoselect (100baseTX)
status: active
inet 192.168.3.1 netmask 0xffffff00 broadcast 192.168.3.255
inet6 fe80::205:5dff:fe71:92ec%ste0 prefixlen 64 scopeid 0x1
ste2: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
address: 00:05:5d:71:92:ee
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.0.1 netmask 0xffffff00 broadcast 192.168.0.255
inet6 fe80::205:5dff:fe71:92ee%ste2 prefixlen 64 scopeid 0x3
ste3: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
address: 00:05:5d:71:92:ef
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet 192.168.1.1 netmask 0xffffff00 broadcast 192.168.1.255
inet6 fe80::205:5dff:fe71:92ef%ste3 prefixlen 64 scopeid 0x4
dc0: flags=8843<UP,BROADCAST,RUNNING,SIMPLEX,MULTICAST> mtu 1500
address: 00:50:bf:d7:8c:9b
media: Ethernet autoselect (100baseTX full-duplex)
status: active
inet x.y.177.61 netmask 0xfffffc00 broadcast x.y.179.255
Thanks for reading.
Visit your host, monkey.org