Niklas, I am confused. Why you want to Cisco and m0n0 together. Use one or
another. M0n0 has all functions as Cisco has + network shaping which you
want extra. So hang out with m0n0 only !!!
From: Niklas Petersen [mailto:niklas at vestermarken dot net]
Sent: Thursday, June 02, 2005 10:57 AM
To: m0n0wall at lists dot m0n0 dot ch
Subject: [m0n0wall] Running m0n0wall behind existing router
I want to use m0n0wall as traffic shaper for the network in my appartment
building. We are currently using a Cisco router, and for the time being I
would like to keep this router running NAT and taking care of DHCP. The
Cisco has the WAN IP from our ISP. The LAN currently uses 10.1.0.0
I would like to set it up as follows:
Cisco Ethernet1/1 WAN 80.x.x.x
Cisco FastEthernet0/0 LAN 10.1.0.1
m0n0wall WAN ?.?.?.?
m0n0wall LAN ?.?.?.?
PC clients ?.?.?.?
Sofar I have been semi-succesful getting this to work. I used 10.1.0.7 as
WAN and 10.1.0.6 as LAN on m0n0wall. Turned off NAT and disabled DHCP in
m0n0. I set up a client machine with IP 10.1.0.9 and 10.1.0.6 as gateway
This way I was able to get an ICMP packet through to the internet. I was
however not able to browse any webpages. I took a look at the routing on the
Cisco. It currently has one route:
ip route 10.1.0.0 255.255.0.0 FastEthernet0/0
actual webpage data, is being sent back to the wrong place instead of
m0n0wall where it was supposed to? That was my idea anyway, so I added:
ip route 10.1.0.9 255.255.255.255 10.1.0.7
which made me able to browse webpages on the client PC.
This leads me to believe that this setup *could* actually work - but I
simply don't know how to make a similiar routing for all the client machines
on the LAN (10.1.0.0 255.255.0.0).
I tried adding these two routes instead of the existing:
ip route 10.1.0.7 255.255.255.255 FastEthernet0/0 ip route 10.1.0.0
Now my question is: Would this IP setup work at all, and if so can anyone
tell me what kind of routes I need to add, or anything else I need to do, in
order to make it work?
If this is not the way of doing it, could someone tell me how I can set this
Any help is greatly appreciated.
No virus found in this outgoing message.
Checked by AVG Anti-Virus.
Version: 7.0.322 / Virus Database: 267.4.1 - Release Date: 02-06-2005
To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch