simple routing problem

  1. Hi all,

    the following scenario:

    lan2: 10.200.30/24
    eth0 =
    eth1 =

    a dualhomed linux-box (debian-woody stable, custom kernel 2.4.20 from should route between the two networks. i activated
    ip_forwarding with 'echo 1 > /proc/sys/net/ip_forwarding' and the
    routing table looks like the following:

    Kernel IP routing table
    Destination Gateway Genmask Flags Metric Ref Use Iface U 0 0 0 eth1 U 0 0 0 eth0

    i can ping both interfaces from the according lan and interestingly
    i'm able to ping from a machine inside the,
    but that's it. i cannot ping other machines in the net
    from 10.200.3.x and vice versa it's the same.

    i would be glad about any hints what could be going on, since as far
    as i know there is nothing more to do except activating ip-forwarding
    for a linux box to act as a simple router between two lans. gated or
    routed is only neccessary for dynamic routing, correct me if i am

    Martin Baumann, Jun 24, 2003
  2. Martin Baumann

    Ida Guest

    Are your linux box running IPTABLES? If yes, disable it first, then tighten
    it up step by step.

    Ida, Jun 24, 2003
  3. Martin Baumann

    no body Guest

    Do the boxes on the 10.200.3 net have your box set as their
    no body, Jun 24, 2003
  4. no sorry this is a typo, it has to be ...
    the ip-addresses on the linux-box are and

    the clients in the subnet use as their gateway
    and the clients in the subnet use, each client
    is able to ping it´s gateway, i can even ping the other lan-card, e.g.
    from a box with the ip-adress i can ping,
    but no other ip in the subnet. it´s the same when pinging
    from e.g. to, the client gets a reply, but
    only when pinging the gateway´s ip in the other net.

    what i did now is to activate ipmasquerading (with iptables) and with
    the help of this the box is routing, but this is not what i want. i
    want to act the machine as a router without the help of iptables.
    still hoping there´s a solution,
    Martin Baumann, Jun 25, 2003
  5. That isn't the right thing to do to enable IP forewarding. Instead use

    echo -n 1 > /proc/sys/net/ipv4/ip_forward

    The ip_forward proc file must exist already, or you aren't using a
    kernel with IP forwarding compiled in.

    Of course, it could just be mistake in recalling what you did to enable
    IP forwarding and, if so, then something else is wrong.
    Clifford Kite, Jun 25, 2003
