|
||||||||||
WÅ‚odzimierz FrÄ…czek wrote: > Hello > > I try to use m0n0nowall ver.1.21 but have troubles on begining. > My first m0n0 NIC ( LAN ) - 192.168.0.20 > I create VLAN ( parent interface - LAN ) and give address 10.0.0.20 ( OPT1 ) > Next I link my PC ( my address 192.168.0.100 ) to LAN > I can ping of course to LAN and after adding a trace to the routing table in my Windows to OPT1 too. > But if I change my PC adress to 10.0.0.100 for example I can't ping nowhere ( OPT1, LAN ) > Please explain me why ? > > WF > Basic reason is that your PC has not been configured to understand/work with 802.1q (VLANS). Your m0n0wall's VLAN interface, listening on 10.0.0.20, will only respond to packets that are tagged with 802.1q information for the VLAN you have configured. Your computer is sending NON-802.1q tagged ethernet frames, and as such your m0n0wall is seeing them on its LAN interface, and is probably dropping them, or just allowing them to pass (default m0n0wall LAN rule is to allow all) You will need a switch that supports VLANS (802.1q) to begin with. Check out the following links for more information on VLANS: http://www.zyxel.com/support/supportnote/ves1012/app/8021q.htm http://en.wikipedia.org/wiki/IEEE_802.1Q -- Bill Arlofski Reverse Polarity |