[PLUTO-help] LAN con due gateway (1 ADSL + 1 ramo d'azienda)

Moreno Benincā moreno.beninca a bonward.com
Mer 3 Nov 2010 10:37:41 CET 

ecco..

L'antenna č una Mikrotik ed č un router (RouterOS v5.0rc1).. di cui non 
ho un controllo diretto, in quanto installata e gestita da un mio 
fornitore. Per eventuali modiiche non ci sono problemi..

Kernel IP routing table
Destination     Gateway         Genmask         Flags Metric Ref    Use 
Iface
89.96.227.68    0.0.0.0         255.255.255.252 U     0      0        0 eth1
89.96.227.68    0.0.0.0         255.255.255.252 U     0      0        0 
ipsec0
132.147.160.0   89.96.227.69    255.255.255.0   UG    0      0        0 
ipsec0
192.168.11.0    89.96.227.69    255.255.255.0   UG    0      0        0 
ipsec0
192.168.10.0    0.0.0.0         255.255.255.0   U     0      0        0 eth0
0.0.0.0         89.96.227.69    0.0.0.0         UG    0      0        0 eth1

N.B. Ora la rotta per il 192.168.11.0 esce attraverso la vpn. 
Chiudendo/disabilitando la VPN (quello che voglio fare) la tabella di 
routing diventa:

89.96.227.68    0.0.0.0         255.255.255.252 U     0      0        0 eth1
192.168.11.0    192.168.10.253    255.255.255.0   UG    0      0        
0 eth0
192.168.10.0    0.0.0.0         255.255.255.0   U     0      0        0 eth0
0.0.0.0         89.96.227.69    0.0.0.0         UG    0      0        0 eth1

e, ovviamente dall'ifconfig qua sotto sparisce ipsec0!

eth0      Link encap:Ethernet  HWaddr 00:0A:01:AC:19:46
           inet addr:192.168.10.253  Bcast:192.168.10.255  
Mask:255.255.255.0
           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
           RX packets:77628 errors:0 dropped:0 overruns:0 frame:0
           TX packets:75872 errors:0 dropped:0 overruns:0 carrier:0
           collisions:0 txqueuelen:1000
           RX bytes:16162554 (15.4 MB)  TX bytes:31847616 (30.3 MB)
           Interrupt:11 Base address:0xe800

eth1      Link encap:Ethernet  HWaddr 00:15:F2:30:10:BD
           inet addr:89.96.227.70  Bcast:89.96.227.71  Mask:255.255.255.252
           UP BROADCAST RUNNING  MTU:1500  Metric:1
           RX packets:93216 errors:0 dropped:0 overruns:0 frame:0
           TX packets:64937 errors:0 dropped:0 overruns:0 carrier:0
           collisions:0 txqueuelen:1000
           RX bytes:33290628 (31.7 MB)  TX bytes:15668588 (14.9 MB)
           Interrupt:11 Base address:0xa800

ipsec0    Link encap:Ethernet  HWaddr 00:15:F2:30:10:BD
           inet addr:89.96.227.70  Mask:255.255.255.252
           UP RUNNING NOARP  MTU:16260  Metric:1
           RX packets:4958 errors:0 dropped:6 overruns:0 frame:0
           TX packets:5634 errors:0 dropped:0 overruns:0 carrier:0
           collisions:0 txqueuelen:10
           RX bytes:732156 (714.9 KB)  TX bytes:2968524 (2.8 MB)

lo        Link encap:Local Loopback
           inet addr:127.0.0.1  Mask:255.0.0.0
           UP LOOPBACK RUNNING  MTU:16436  Metric:1
           RX packets:532 errors:0 dropped:0 overruns:0 frame:0
           TX packets:532 errors:0 dropped:0 overruns:0 carrier:0
           collisions:0 txqueuelen:0
           RX bytes:52285 (51.0 KB)  TX bytes:52285 (51.0 KB)



Il 03/11/2010 10:07, Stefano Callegari ha scritto:
> Il mer, nov 03, 2010 at 09:40:55 +0100, Moreno Benincā scrisse:
> [cut]
>> 3) Se ricevo un pacchetto sulla eth1 destinato alla 192.168.11.0 il
>> router/firewall puō re-inoltrarlo al 192.168.10.253 attraverso la stessa
>> interfaccia dal quale l'ha ricevuto? ..cioč la eth1.
>>
>> Spero di essere riuscito a spiegarmi!
> Penso che fai prima se ci fai vedere il risultato di ifconfig e di route -n
> dei due router.... perchč l'antenna č un router, vero?
>
> [cut]
>
> Ciao

More information about the pluto-help mailing list