[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[Sheflug] Network design problem

To: sheflug@xxxxxxxxxxxxxx
Subject: [Sheflug] Network design problem
From: Peter Humphrey <peter@xxxxxxxxxxxxxxxxxx>
Date: Fri, 14 Mar 2008 11:21:24 +0000
Delivered-to: sheflug@meiring.org.uk
List-help: <mailto:sheflug-request@sheflug.org.uk?subject=help>
List-id: <sheflug_sheflug.org.uk.sheflug.org.uk>
List-post: <mailto:sheflug@sheflug.org.uk>
List-subscribe: <http://sheflug.org.uk/mailman/listinfo/sheflug_sheflug.org.uk>, <mailto:sheflug-request@sheflug.org.uk?subject=subscribe>
List-unsubscribe: <http://sheflug.org.uk/mailman/listinfo/sheflug_sheflug.org.uk>, <mailto:sheflug-request@sheflug.org.uk?subject=unsubscribe>
Organization: at home
Reply-to: sheflug@xxxxxxxxxxxxxx
Sender: sheflug-bounces@xxxxxxxxxxxxxx
User-agent: KMail/1.9.7

I hope there's an IP guru out there who can help me with this.

My home network seems to be getting more complex all the time. The bit I'm 
having a problem with is the wireless LAN, namely that my wife's laptop 
cannot make a connection to the outside world. This is the topology:

ISP <-- ADSL modem <-- Gateway <-- Ethernet switch.

Also connected to the switch are my workstation and a miscellaneous server. 
The other side of the server has a wireless access point for the laptops.

I've defined an overall prhnet as 192.168.0.0/16, with the ethernet as 
192.168.128.0/17 and the wireless net as 192.168.192.0/19. (The gateway's 
external net is 192.168.0.0/19, and the box has a third interface, dmznet, 
on 192.168.64.0/19, and the server has a virtual net used by VMware on 
192.168.224.0/19, but I hope they don't contribute to my problem.) Thus, 
the ethernet is a subnet of prhnet; the other nets are subnets of the 
ethernet, masked on the top two bits of the third byte.

On the server (all boxes are running Gentoo):

$ cat /etc/networks
loopback        127.0.0.0
prhnet          192.168.0.0/16
outnet          192.168.0.0/19
dmznet          192.168.64.0/19
ethnet          192.168.128.0/17
wapnet          192.168.192.0/19
vrtnet          192.168.224.0/19

$ cat /etc/conf.d/net
config_eth0=( "192.168.128.49 netmask 255.255.128.0 brd 192.168.255.255" )
routes_eth0=( "default gw 192.168.128.1" )
config_eth1=( "192.168.192.210 netmask 255.255.224.0 brd 192.168.223.255" )

It seems to me that the wireless subnet (wapnet) should be routable through 
the ethernet (ethnet), but watching the server's interfaces with tcpdump I 
see pop3 requests from the laptop coming in on the wireless interface but 
not going out on the ethernet. I do have ip_forward set to 1, and:

$ sudo iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination

I looks as though I've made a mistake in the topology, but where?

-- 
Rgds
Peter

_______________________________________________
        Sheffield Linux User's Group
  http://www.sheflug.org.uk/mailfaq.html
 GNU - The choice of a complete generation

Follow-Ups:
- Re: [Sheflug] Network design problem
  - From: Tom Bird
- Re: [Sheflug] Network design problem
  - From: Alex Hudson
- Re: [Sheflug] Network design problem
  - From: Gary Stimson

Prev by Date: [Sheflug] ShefLUG - March Meeting
Next by Date: Re: [Sheflug] Network design problem
Previous by thread: [Sheflug] ShefLUG - March Meeting
Next by thread: Re: [Sheflug] Network design problem
Index(es):
- Date
- Thread