[prev in list] [next in list] [prev in thread] [next in thread]
List: linux-bridge
Subject: [Bridge] Bridge+FW+Nocat
From: ITEX Media Networks "Support (Jonas Frey)" <jf () itexnet ! de>
Date: 2002-05-28 11:12:50
[Download RAW message or body]
Hi,
i am trying to do the following:
I have a Linuxrouter which connects to a Wireless lan accesspoint.
(eth0)
I am using NoCat Auth (www.nocat.net), it fetches request from the
wireless lan through the Linuxrouter which is connected to the internet.
Once NoCat fetches a request is forwards the request to itself where you
have to signup/login. This is done using some iptables rules.
This works fine for NAT.
Now i am trying real forwarding, cause i need real ipaddresses on the
wireless lan machines.
Works like this:
Cisco 2600 -> Catalyst 2950 -> eth1 Linuxrouter eth0 -> Wlan
comes to:
Cisco 2600 -> Catalyst 2950 -> Linuxrouter br1 -> Wlan
Once i config the bridge and ifconfig up it, i cant ping the ip of the
bridge.
As soon as i set ifconfig br1 promisc, i can ping the bridge from
another machine.
But as soon as i do this, some of the machines connected to the Catalyst
get unreachable
as soon as i ping something behind the linuxrouter (wireless lan
machines).
I think the Linuxrouter/bridge is redirecting the catalyst connected
machines to itself instead of the cisco 2600 (-> internet).
I already dissabled STP on both the linuxmachine and the catalysts, but
it doesnt help.
I am not that familar with briding, could anyone point me out what i
made wrong ?
I am sure NoCat/the firewalling on the bridge works fine once setup, its
just that the
catalyst-conn'ed machines get redirected.
Jonas
[Attachment #3 (text/html)]
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 TRANSITIONAL//EN">
<HTML>
<HEAD>
<META HTTP-EQUIV="Content-Type" CONTENT="text/html; CHARSET=UTF-8">
<META NAME="GENERATOR" CONTENT="GtkHTML/0.12.0">
</HEAD>
<BODY>Hi,<br>
<br>
i am trying to do the following:<br>
<br>
I have a Linuxrouter which connects to a Wireless lan accesspoint. (eth0)<br>
I am using NoCat Auth (<A HREF="http://www.nocat.net">www.nocat.net</A>), it fetches \
request from the wireless lan through the Linuxrouter which is connected to the \
internet. Once NoCat fetches a request is forwards the request to itself where you \
have to signup/login. This is done using some iptables rules.<br> This works fine for \
NAT.<br> Now i am trying real forwarding, cause i need real ipaddresses on the \
wireless lan machines.<br> <br>
Works like this:<br>
<br>
Cisco 2600 -> Catalyst 2950 -> eth1 Linuxrouter eth0 -> Wlan<br>
comes to:<br>
Cisco 2600 -> Catalyst 2950 -> Linuxrouter br1 -> Wlan<br>
<br>
Once i config the bridge and ifconfig up it, i cant ping the ip of the bridge.<br>
As soon as i set ifconfig br1 promisc, i can ping the bridge from another \
machine.<br> But as soon as i do this, some of the machines connected to the Catalyst \
get unreachable<br> as soon as i ping something behind the linuxrouter (wireless lan \
machines).<br> I think the Linuxrouter/bridge is redirecting the catalyst connected \
machines to itself instead of the cisco 2600 (-> internet). <br> <br>
I already dissabled STP on both the linuxmachine and the catalysts, but it doesnt \
help.<br> <br>
I am not that familar with briding, could anyone point me out what i made wrong ?<br>
<br>
I am sure NoCat/the firewalling on the bridge works fine once setup, its just that \
the<br> catalyst-conn'ed machines get redirected.<br>
<br>
Jonas<br>
<br>
</BODY>
</HTML>
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic