Nelze pinknout 2 nove site

Milan Cizek cizek.milan at seznam.cz
Wed Aug 16 00:19:53 CEST 2006


Ahoj,
uz si zase vazne nevim rady, pravdepodobne to bude nejaka zacatecnicka
blbost kterou stale prehlizim. Mel jsem dojem, ze to musí byt v maskach,
nejaka chyba třeba i na jiné siti, ale nevidim. Muzete poradit?

Rozsiril jsem sit o novy router, na kterem jsou poveseny 2 nove site:
10.0.8.0/24
10.0.9.0/24

Router je propojeny pateri na NROUTER (nadrazeny router) pomoci paterniho
spoje 10.0.254.32/29.
NROUTER 10.0.254.33 (wi0) --- Router 10.0.254.35 (rl0) napojeno do WiFi AP.

- router ma nastaven defaultrouter na 10.0.254.33.
- pater 10.0.254.32/29 funguje, jednotlive IP z venku (i zevnitr) pinknu, na
stroj se pripojim přes ssh apod.
- na NROUTER jsou vytvorene staticke routy pro site 8 a 9/24.
- na routeru nebezi IPFW/NAT ani PF, na NROUTRU testovano s vypnutym IPFW
(to není problem).
* z vnejsi site (data přes pater) nepinknu ani rozhrani routeru 10.0.9.1 a
10.0.8.1, samozrejme ani zadne klienty.
- pokud na routeru spustim tcpdump icmp, zadne icmp pakety z "vnejsku"
nedorazi.
- z routeru pinknu bez problemu po cele siti, icmp se mi vraci.

# Router netstat -rn
Destination        Gateway            Flags    Refs      Use  Netif Expire
default            10.0.254.33        UGS         0     4836    rl0
10.0.8/24          link#1             UC          0        0    wi0
10.0.9/24          link#3             UC          0        0    rl1
10.0.9.20          00:13:f7:10:4c:3a  UHLW        1        0    rl1   1188
10.0.254.32/29     link#2             UC          0        0    rl0
10.0.254.33        00:60:b3:6b:0f:02  UHLW        2       92    rl0    479
127.0.0.1          127.0.0.1          UH          0        0    lo0

# NROUTER netstat -rn
Destination        Gateway            Flags    Refs      Use  Netif Expire
default            212.158.158.237    UGS         0 20548584   ste0
10.0.1/24          link#5             UC          0        0    wi0
10.0.1.33          link#5             UHLW        1        6    wi0
10.0.2/24          10.0.254.2         UGS         0   634649    wi0
10.0.3/24          10.0.254.2         UGS         1  1928326    wi0
10.0.4/24          link#2             UC          0        0   ste1
10.0.4.21          00:e0:7d:eb:d0:8f  UHLW        1    50977   ste1
10.0.6/24          10.0.254.18        UGS         0  1816293   ath0
10.0.7/24          10.0.254.18        UGS         0    20260   ath0
10.0.8/24          10.0.254.35        UGS         0    16566    wi0
10.0.9/24          10.0.254.35        UGS         0    26177    wi0
10.0.254/29        link#5             UC          0        0    wi0
10.0.254.1         00:60:b3:6b:0f:02  UHLW        1       16    lo0
10.0.254.2         00:0b:6b:37:7a:10  UHLW        3   760799    wi0
10.0.254.8/29      link#3             UC          0        0   ste2
10.0.254.15        ff:ff:ff:ff:ff:ff  UHLWb       1        1   ste2
10.0.254.16/29     link#6             UC          0        0   ath0
10.0.254.18        00:0b:6b:37:79:aa  UHLW        3   177698   ath0
10.0.254.24/29     link#4             UC          0        0   ste3
10.0.254.31        ff:ff:ff:ff:ff:ff  UHLWb       1        1   ste3
10.0.254.32/29     link#5             UC          0        0    wi0
10.0.254.35        00:4f:62:05:22:08  UHLW        3   155035    wi0
82.99.161.0        ff:ff:ff:ff:ff:ff  UHLWb       1       35   ste0 =>
82.99.161/27       link#1             UC          0        0   ste0
127.0.0.1          127.0.0.1          UH          0     2253    lo0
212.158.158.236/30 link#1             UC          0        0   ste0
212.158.158.237    00:50:66:00:05:60  UHLW        2        0   ste0


Jak postupovat dal v hledani chyby? Diky

Milan






More information about the Users-l mailing list