!!! kaliteri eksigisi !!!

nk eos at eos.gr
Wed Mar 23 16:32:07 EET 2005 


Symeonidis Alexandros wrote:
> lipon, tha to ksanapo ti akrivos enoo mpas ke den to ekana ksekatharo...
> 
> eixa ta eksis:
> 
> /etc/sysconfig/network
> NETWORKING=yesHOSTNAME=some.server.com/etc/sysconfig/network-scripts/ifcfg-e
> th0 DEVICE=eth0
> BOOTPROTO=dhcp
> ONBOOT=yes
> eixa lipon internet, mesw tu NAT, to opio stin usia ine ws eksis:
> 
> primaryserver [10.0.0.1] <---> [10.0.0.128]some.server.com (ip given
> automatically via DHCP / gateway automatically set to 10.0.0.1)
> 
> 
> twra, epidi sto primary ke to deftero thelw na trekso ta idia services, px
> ftp etc...
> ke thelw na kanw bind mia kanoniki external ip alu network, ke me nat rules
> den
> tha borusa na exw access sto deftero pc kanontas mapping tin idia porta sto
> idio ip dio fores,

mexri edw den exw katalavei katholou ti theleis na peis pera ap to oti h 
eth0 sou pairnei dynamika mia ip ki ena default gw (den jerw ti ennoeis 
primary kai deftero, oute ti einai na kaneis map thn idia porta sthn 
idia ip dyo fores)


> evala mia nea karta diktiou, ke akoluthi to configuration tis:
> 
> /etc/sysconfig/network-scripts/ifcfg-eth0
> 
> DEVICE=eth1
> BOOTPROTO=static
> BROADCAST=66.xxx.xxx.255
> IPADDR=66.xxx.xxx.124
> NETMASK=255.255.255.0
> NETWORK=66.xxx.xxx.0
> GATEWAY=66.xxx.xxx.1
> ONBOOT=yes
> TYPE=Ethernet
> 

na mou epitrepseis mia dieykrinish: ayto den einai to configuration enos 
iface, einai ena script ap to opoio ena shell script thetei to 
configuration enos iface, thelw na pw m ayto oti briskesai se lathos 
kateythynsh, kapws etsi parametropoioume ifaces kai sta windows, 
symplhrwnoume times se diaforous magous kai de mas polynoiazei ti 
akribws tha kanoun aytoi oi magoi me tis times pou tous dwsame, ayth h 
antilhpsh malista xarakthrizei tous xrhstes sta windows, oi diaxeiristes 
sta windows akomh exoun mia plhresterh antilhpsh gia tis analoges 
leitourgies, epipleon otan h
cat /etc/sysconfig/network-scripts/ifcfg-eth0
sou jekinaei output me th grammh
DEVICE=eth1
tote ta pragmata ginontai akomh periplokotera ws pros to oti deixnei oti 
oute me tous wizards exeis eparkh ejoikeiwsh

> to apotelesma ine to eksis:
> apo to pc mesa, an kanw px: lynx www.myip.dk   mu emfanizi to neo static ip
> tis eth1
> ara ola ginonte mesw tis eth1 pleon!
> omos, apo to primary server, boro ke exw prosvasi sto secondary, ws
> 10.0.0.128
> afto simeni pos ke oi dio kartes ine swsta rithmismenes ke dulevun!!!
> 
> to provlima:
> Tha ithela, kapia sigekrimena paketa na pane mesw tu eth0, ke oxi tu eth1
> !!!
> 
> sigekrimena, thelw ola ta outgoing TCP paketa mias portas na pane mesw tu
> eth0,
> ke fisika na ginonte translate gia to eth0, dld:

xwris na eimai sigouros oti exw katalavei thn anagkh sou ypothetw oti 
ennoeis kati san

iptables -t nat -A [/ -I] OUTPUT [/ POSTROUTING] [-s xx.xx.xx.xx an 
xreiazesai] -p tcp --source-port zz,zz -j MASQ [/ SNAT -to-source 
yy.yy.yy.yy]

eite/kai

ip rule add from yy.yy.yy.yy  table <mytable>
ip route add def via yy.yy.yy.yz dev eth? table <mytable>

diavase ta sxetika man pages gia na se voithisoun na entopiseis akribws 
ti theleis na kaneis kai pws na to kaneis, wstoso vevaiwsou oti 
antilamvanesai ta sxetika me th dromologhsh paketwn kai zhta apo 
kapoion, px ton proistameno sou, na se boithisei, mhn epixeirhseis na 
antigrapseis syntajh apo ta parapanw paradeigmata, den shmainoun tipote.

> 
> TCP outbound port 2525 -> eth0
> 
> bori kapios na me voithisi me afto ???
> 
> efxaristw poli prokatavolika !!!
> 
> 
> 
> 
> ------------------------------------------------------------------------
> 
>

More information about the Linux-greek-users mailing list