[nos-bbs] Not Sure if my IPtables forwarding RIP is working
maiko at pcsinternet.ca
maiko at pcsinternet.ca
Sun Dec 18 23:29:08 EST 2022
Read this (skip the part about JNOS 2.0h and patches) :
https://www.langelaar.net/projects/jnos2/ripamprgw
Again, the assumption is that you have a static IP registered
in the amprnet gateways database. That's the only way you will
get RIP broadcasts directed to your linux box.
If there is no 'source match' then everything from ANY iface
on the linux box is masqueraded (if you have a second ethernet
port, or several TUN interfaces, whatever).
Maiko / VE4KLM
On 2022-12-18 22:00, Chris Maness wrote:
> That does not need a source match so that it is only masquerading for
> JNOS?
>
> THANKS!
>
> I am connected the old fashioned way with your rule.
>
> Also, why does 44.0.0.1 go away when I get tunnels up, do I need a
> route that bypasses the tunnel fo this one since it is a
> publicly pingable IP?
>
> On Sun, Dec 18, 2022 at 7:44 PM <maiko at pcsinternet.ca> wrote:
>>
>>
>> I did forgot to mention the 'outgoing' rule, so anything my JNOS needs
>> to
>> access in the non 44 world is masqueraded as IP address of my linux
>> box
>> :
>> (or something like that)
>>
>> echo 1 > /proc/sys/net/ipv4/ip_forward
>>
>> iptables -t nat -A PREROUTING -i eth0 -p 4 -j DNAT --to-destination
>> 19.168.200.201
>>
>> iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
>>
>> Maiko / VE4KLM
More information about the nos-bbs
mailing list