Date: Thu, 11 Oct 2001 08:45:02 -0400 From: "John Holstein, IS" <jholstein@cnpapers.com> To: cjclark@alum.mit.edu Cc: freebsd-questions@freebsd.org Subject: Re: gateway and multiple subnets round II Message-ID: <5.1.0.14.2.20011011082956.041aab70@mail.cnpapers.com> In-Reply-To: <20011010203259.S387@blossom.cjclark.org> References: <5.1.0.14.2.20011010141951.0419e750@mail.cnpapers.com> <5.1.0.14.2.20011009143853.041e3ec8@pop.cotse.com> <5.1.0.14.2.20011009143853.041e3ec8@pop.cotse.com> <20011009232857.D387@blossom.cjclark.org> <5.1.0.14.2.20011010141951.0419e750@mail.cnpapers.com>
next in thread | previous in thread | raw e-mail | index | archive | help
At 08:32 PM 10/10/2001 -0700, you wrote:
>On Wed, Oct 10, 2001 at 02:47:16PM -0400, John Holstein, IS wrote:
> > At 11:28 PM 10/9/2001 -0700, you wrote:
>
>[snip]
>
> > >So, are you saying the real picture is,
> > >
> > > 192.168.0.x -----}
> > > 192.168.1.x -----}
> > > }--Cisco Router--|ed0 FreeBSD GW ed1|---- internet
> > > 192.9.200.x -----}
> > > 192.9.205.x -----}
> >
> > This is exactly what I need to do.
> >
> > >If that's the case, you just need to add the routes on the FreeBSD
> > >gateway,
> > >
> > > # route add net 192.168.0.0 <Cisco Router IP>
> > > # route add net 192.168.1.0 <Cisco Router IP>
> > > # route add net 192.168.200.0 <Cisco Router IP>
> > > # route add net 192.168.205.0 <Cisco Router IP>
> > >
> > >Where <Cisco Router IP> is the IP address of the router's interface on
> > >the network with the FreeBSD box's ed0.
> > >
> > >To load these at boot, put something like,
> > >
> > > static_routes="0 1 200 205"
> > > route_0="net 192.168.0.0 <Cisco Router IP>"
> > > route_1="net 192.168.0.0 <Cisco Router IP>"
> > > route_200="net 192.168.200.0 <Cisco Router IP>"
> > > route_205="net 192.168.205.0 <Cisco Router IP>"
> > >
> > >In rc.conf(5).
> >
> > I think I am missing something. I have done the above, completely,
> > including adding the routes to rc.conf but if I sit a box on _any_ subnet
> > other than 192.9.200 (the same subnet as ed0), I cannot get out.
>
>OK, then the picture is not right. It should be (?),
>
> 192.168.0.x --}
> 192.168.1.x --}-Cisco Router-{ 192.9.200.x }-|ed0 FreeBSD GW ed1|- internet
> 192.9.205.x --}
>
>In this case, you need to take the references to 192.9.205.0 out of
>the routing stuff. (Sorry about the "192.168" typos where I should have
>put "192.9" in there. 192.9.205.0 is owned by Sun Microsystems,
>BTW. That you?)
>
>I'm sensing that you may not have your various networks properly
>subnetted here. Could _you_ draw us a picture with all of the
>networks (including masks) and gateways?
>--
>Crist J. Clark cjclark@alum.mit.edu
> cjclark@jhu.edu
> cjc@freebsd.org
Well, you see, that's the overall problem. The network isn't setup
correctly, in my opinion. Another problem is, it works, however incorrectly.
Here's the current (working) setup:
192.168.0.x (DHCP allocated IP's for Workstations [ethernet])
192.9.200.x (Static Internal IP's for Workstations [ethernet])
192.168.1.x (DHCP allocated IP's for Workstations [token ring])
192.9.205.x (Static Internal IP's for Workstations [token ring])
** Please note, this is how it's been relayed to me. I run the webservers,
we two other people doing the internal networking.
All four subnets above go through --> Cisco Router (ip 192.9.200.4) --> (ip
192.9.200.254) Pix Firewall (external IP) -----------> internet
The Cisco Router is looking to 192.9.200.254 as the gateway, passing
everything through. I had the FreeBSD box on the 200.254 IP, and it would
pass everything through that was on that subnet. Anything else, the other
three subnets, would not get passed the FreeBSD box. So, assuming the
router is passing everything "as is" from the other subnets, looking to
200.254 as the gate, my thoughts are, it needs to be further configured to
get the other subnets out.
The director doesn't want to mess with the Cisco Router, which I think
would be the easiest way to do all this. Make the Cisco Router forward
everything on the 192.9.200 subnet, which would allow the freebsd box to
pass everything on the same subnet as the ed0 nic. No one here is Cisco
certified and frankly, none of the network people have the experience
necessary to configure the router.
Anyway, to accomplish what I need to do, I need to get the FreeBSD box
configured to pass everything, irregardless of the subnet running on the
same ether as ed0.
And no, no Sun Microsystems here. Someone mistakenly added 192.9 instead of
using 10.0.x.x as the class b and so the story goes.....
John Holstein
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.1.0.14.2.20011011082956.041aab70>