Hi folks, just a quick question. I've got ultramonkey setup
and working using masquerading. My question might sound a bit
newbie-ish, but I can't seem to figure out how to get this setup
to work with tunneling.
Here's what I want to do, if someone can give me pointers on how
to set it up that would be great.
I'm currently using one director machine, and one node to simplify the
setup. Once everything is up and running, I'll add more nodes,
and another director.
My monitor is setup with linux 2.4.0, iptables, and lvs 0.2.4
Here's the monitor's networking setup
IP: 216.218.7.2 (eth0), 10.0.0.1 (eth1)
Floating address: 216.218.7.3
/sbin/ifconfig eth0 216.218.7.2 netmask 255.255.255.0
/sbin/ifconfig eth1 10.0.0.1 netmask 255.0.0.0
/sbin/route add default gw 216.218.7.1 eth0
/sbin/route add -net 127.0.0.0 netmask 255.0.0.0 lo
/sbin/route add -net 10.0.0.0 netmask 255.0.0.0 eth1
echo "Setting up masquerading"
/sbin/ifconfig eth0:0 216.218.7.3
/usr/local/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
echo "16384" > /proc/sys/net/ipv4/ip_conntrack_max
Node setup
IP: 10.0.1.1
/sbin/ifconfig lo 127.0.0.1
/sbin/route add -net 127.0.0.0 netmask 255.0.0.0 lo
/sbin/ifconfig eth0 10.0.1.1 broadcast 10.0.0.0 netmask 255.0.0.0
/sbin/route add default gw 10.0.0.1 netmask 0.0.0.0 metric 1
Router/Firewall setup
IP: 216.218.7.1
/sbin/route add -net 10.0.0.0 netmask 255.0.0.0 gw 216.218.7.2
I'm assuming that the only modification to the ldirectord setup
would be to change from masq to ipip,
them modifying something in the above configuration
(the iptables stuff), and probably something in the router
configuration (iptables and/or route).
All the machines are on the same physical network interconnected
by a hub. Any clues on where I can find documentation to have
the same type of setup using ipip? (I'm a bit new at this whole
networking stuff, and just couldn't figure out what I would
need to modify to get it to work).
Regards,
--
Mark Steele
Vice president research and development
Inet Technologies Inc.
msteele@inet-interactif.com
010110010110111101110101001000000110000101110010011001010010000001100100011101010110110101100010
and working using masquerading. My question might sound a bit
newbie-ish, but I can't seem to figure out how to get this setup
to work with tunneling.
Here's what I want to do, if someone can give me pointers on how
to set it up that would be great.
I'm currently using one director machine, and one node to simplify the
setup. Once everything is up and running, I'll add more nodes,
and another director.
My monitor is setup with linux 2.4.0, iptables, and lvs 0.2.4
Here's the monitor's networking setup
IP: 216.218.7.2 (eth0), 10.0.0.1 (eth1)
Floating address: 216.218.7.3
/sbin/ifconfig eth0 216.218.7.2 netmask 255.255.255.0
/sbin/ifconfig eth1 10.0.0.1 netmask 255.0.0.0
/sbin/route add default gw 216.218.7.1 eth0
/sbin/route add -net 127.0.0.0 netmask 255.0.0.0 lo
/sbin/route add -net 10.0.0.0 netmask 255.0.0.0 eth1
echo "Setting up masquerading"
/sbin/ifconfig eth0:0 216.218.7.3
/usr/local/sbin/iptables -t nat -A POSTROUTING -o eth0 -j MASQUERADE
echo "16384" > /proc/sys/net/ipv4/ip_conntrack_max
Node setup
IP: 10.0.1.1
/sbin/ifconfig lo 127.0.0.1
/sbin/route add -net 127.0.0.0 netmask 255.0.0.0 lo
/sbin/ifconfig eth0 10.0.1.1 broadcast 10.0.0.0 netmask 255.0.0.0
/sbin/route add default gw 10.0.0.1 netmask 0.0.0.0 metric 1
Router/Firewall setup
IP: 216.218.7.1
/sbin/route add -net 10.0.0.0 netmask 255.0.0.0 gw 216.218.7.2
I'm assuming that the only modification to the ldirectord setup
would be to change from masq to ipip,
them modifying something in the above configuration
(the iptables stuff), and probably something in the router
configuration (iptables and/or route).
All the machines are on the same physical network interconnected
by a hub. Any clues on where I can find documentation to have
the same type of setup using ipip? (I'm a bit new at this whole
networking stuff, and just couldn't figure out what I would
need to modify to get it to work).
Regards,
--
Mark Steele
Vice president research and development
Inet Technologies Inc.
msteele@inet-interactif.com
010110010110111101110101001000000110000101110010011001010010000001100100011101010110110101100010