[nos-bbs] Not Sure if my IPtables forwarding RIP is working
Chris Maness
christopher.maness at gmail.com
Sun Dec 18 23:36:08 EST 2022
Replies below.
On Sun, Dec 18, 2022 at 8:29 PM <maiko at pcsinternet.ca> wrote:
>
> Read this (skip the part about JNOS 2.0h and patches) :
>
> https://www.langelaar.net/projects/jnos2/ripamprgw
>
> Again, the assumption is that you have a static IP registered
> in the amprnet gateways database. That's the only way you will
> get RIP broadcasts directed to your linux box.
Yes, it has been for a very long time. Just priorities shifted and
life happened.
It is working now with RIP. I think your JNOS may be down as I can connect
to VE3CGR, but not your box currently.
>
> If there is no 'source match' then everything from ANY iface
> on the linux box is masqueraded (if you have a second ethernet
> port, or several TUN interfaces, whatever).
>
> Maiko / VE4KLM
>
Thanks again. Chris
> On 2022-12-18 22:00, Chris Maness wrote:
> > That does not need a source match so that it is only masquerading for
> > JNOS?
> >
> > THANKS!
> >
> > I am connected the old fashioned way with your rule.
> >
> > Also, why does 44.0.0.1 go away when I get tunnels up, do I need a
> > route that bypasses the tunnel fo this one since it is a
> > publicly pingable IP?
> >
> > On Sun, Dec 18, 2022 at 7:44 PM <maiko at pcsinternet.ca> wrote:
> >>
> >>
> >> I did forgot to mention the 'outgoing' rule, so anything my JNOS needs
> >> to
> >> access in the non 44 world is masqueraded as IP address of my linux
> >> box
> >> :
> >> (or something like that)
> >>
> >> echo 1 > /proc/sys/net/ipv4/ip_forward
> >>
> >> iptables -t nat -A PREROUTING -i eth0 -p 4 -j DNAT --to-destination
> >> 19.168.200.201
> >>
> >> iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
> >>
> >> Maiko / VE4KLM
--
Thanks,
Chris Maness
More information about the nos-bbs
mailing list