Guest mdban4 Posted February 2, 2005 Report Share Posted February 2, 2005 Need to route from Internal lan 10.0.0.x to 192.168.0.x (WAN), both ether cards in the same linux server. Have squid and DG running on 192.168.0.10 (ether0 in dg server). Lan client's with Gateway set to ip of 192.168.0.10 have http requests filtered via DG. Works great! Unfortunately, a simple bypass is to set client's gateway to (ISP router) 192.168.0.1 and then no filtering occurs. Thus need to separate the lans so that client's cannot go to 192.168.0.1 and must stay on 10.0.0.x. How? Thx in advance, mb Quote Link to comment Share on other sites More sharing options...
bunnadik Posted February 3, 2005 Report Share Posted February 3, 2005 Add a line "net.ipv4.ip_forward = 0" to /etc/sysctl.conf and run 'sysctl' This stops forwarding between your NIC's. - Peder Quote Link to comment Share on other sites More sharing options...
Guest mdban4 Posted February 3, 2005 Report Share Posted February 3, 2005 Peder, thx,but no go. Looking to add the 10.0.0.x lan, thus need to route between the original 192.168 lan and the new 10.0.0.x lan. Users will be on the 10.x lan so that they cannot access the 192. lan without going thru DanGuardian. -Thx, mb Quote Link to comment Share on other sites More sharing options...
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.
Note: Your post will require moderator approval before it will be visible.