Routing with Netra X1 (Solaris 8)

From: Andreas Hoeschler (ahoesch@smartsoft.de)
Date: Sat Feb 15 2003 - 14:26:47 EST


Dear managers,

this is my second attempt to setup a Netra X1 as a gateway for a private
subnet (NAT). The first attempt succeeded - the machine is still running
and doing its job just fine. I now tried it again with another machine
and another provider. This second attempt failed and I have no idea why.

We have been given a subnet of 8 public IP adresses by our provider.

212.108.168.48 network
212.108.168.49 router
212.108.168.50 Netra X1
255.255.255.248 netmask

The interface dmfe1 is connected to the ISPs switch. A Powerbook is
connected to the internal interface dmfe0.

bash-2.03# ndd -get /dev/ip ip_forwarding
1
bash-2.03# netstat -rn

Routing Table: IPv4
   Destination Gateway Flags Ref Use Interface
-------------------- -------------------- ----- ----- ------ ---------
212.108.168.48 212.108.168.50 U 1 23 dmfe1
192.168.1.0 192.168.1.1 U 1 31 dmfe0
224.0.0.0 192.168.1.1 U 1 0 dmfe0
default 212.108.168.49 UG 1 44
127.0.0.1 127.0.0.1 UH 8 40162 lo0

I can successfully reach any internet address from the Netra. I can log
into the Netra with telnet, ssh,... from the Powerbook unsing the
internal interface. I can log into the Netra (over dmfe1) from a machine
in our public subnet 212.108.168.48 e.g. from a Linux machine with the
address 212.108.168.51.

However, I cannot reach the machine from the internet. An attempt to log
into the Netra using ssh

bash2.05 ahoesch@localhost ~ % ssh 212.108.168.50
ssh: connect to address 212.108.168.50 port 22: Operation timed out

fails. Neither ping nor telnet do work but that is no wonder since the
IP filter running on the Netra is configured to block such requests.
However, ssh should do. What am I missing?

Thanks a lot for any advice!

Regards,

   Andreas

PS: I connected my Powerbook to the ISP cable and configured it to be
212.108.168.50. This machine can be reached from outer space so the
problem must be somewhere in th eNetra.
_______________________________________________
sunmanagers mailing list
sunmanagers@sunmanagers.org
http://www.sunmanagers.org/mailman/listinfo/sunmanagers



This archive was generated by hypermail 2.1.7 : Wed Apr 09 2008 - 23:25:49 EDT