Very Computer

Dear All,

  My box have 3 nic installed , I would like to use this box as my firewall
with DMZ,
Those card was loaded up successfully during LILO. And I have assigned the
following IP for each interface as follow :
----------------------------------------------------------------------------

 eth1 : 168.168.1.254 ----- For our Private LAN (Intel EtherExpress Pro100)
 netmask: 255.255.0.0
 network: 168.168.0.0
 broadcast: 168.168.255.255

 eth2 : 168.168.2.254 ----- For our DMZ (Intel EtherExpress Pro100)
 netmask: 255.255.0.0
 network: 168.168.0.0
 broadcast: 168.168.255.255

 eth2 : x.x.x.x --------------- Which is our public IP (3c905B-TPO)

 Also, I have set up 2 PC for test using crossover Cat5.

 PC1 (simulate as Private LAN client)
 - connect to the "eth1"
 - and the IP is 168.168.1.10
 netmask: 255.255.0.0
 network: 168.168.0.0
 broadcast: 168.168.255.255
 gateway : 168.168.1.254

 PC2 (simulate as DMZ's server)
 - connect to the "eth2"
 - and the IP is 168.168.1.10
 netmask: 255.255.0.0
 network: 168.168.0.0
 broadcast: 168.168.255.255
 gateway : 168.168.2.254
----------------------------------------------------------------------------

  After those setup, I started try to ping those test PC at the Firewall
box.
but just the PC2 have response.. The interrupts of those eth0 and eth1 are
keep
increasing.... so, will this is the routing problem or what other else ??

  Does anyone experienced this wired things b4 ??

Thank
Simon.H

On Sat, 4 Nov 2000 09:24:51 +0800, "Simon Hung"

both these interfaces are on the same network(168.168.0.0/16).  You
should use the defined private addresses like so:

eth1:  192.168.1.254
Netmask 255.255.255.0
network: 192.168.1.0
broadcast: 192.168.1.255

eth2:  192.168.2.254
Netmask 255.255.255.0
network: 192.168.2.0
broadcast: 192.168.2.255

You want you two seperate networks on seperate networks, right?
Notice where you list your information the network is the same for
both interfaces.  This can get your machine confused because it has
multiple routes to the same place (168.168.0.0).  Set up your
addressing like I've shown above and I guarantee you'll be happier.

HB

Quote:> eth2 : x.x.x.x --------------- Which is our public IP (3c905B-TPO)

> Also, I have set up 2 PC for test using crossover Cat5.

> PC1 (simulate as Private LAN client)
> - connect to the "eth1"
> - and the IP is 168.168.1.10
> netmask: 255.255.0.0
> network: 168.168.0.0
> broadcast: 168.168.255.255
> gateway : 168.168.1.254

> PC2 (simulate as DMZ's server)
> - connect to the "eth2"
> - and the IP is 168.168.1.10
> netmask: 255.255.0.0
> network: 168.168.0.0
> broadcast: 168.168.255.255
> gateway : 168.168.2.254
>----------------------------------------------------------------------------

>  After those setup, I started try to ping those test PC at the Firewall
>box.
>but just the PC2 have response.. The interrupts of those eth0 and eth1 are
>keep
>increasing.... so, will this is the routing problem or what other else ??

>  Does anyone experienced this wired things b4 ??

>Thank
>Simon.H