|
||||||||||
> -----Original Message----- > From: Adam Nellemann [mailto:adam at nellemann dot nu] > > I need to be able to pass packets between my LAN and my OPT1 (WiFi) > interfaces. While I know this can be done by bridging the OPT1 to the > LAN, I would prefer not to have the same subnet on the two interfaces. > > I'm I wrong in assuming that it should be possible, either by > the right > set or rules, or with static routes, to acomplish this? You're not wrong at all. As pointed out by Dany, you can use PPTP to accomplish what you're looking for, but you can also use 'bridging without bridge' or 'routing' as it is called :-). When you assign your 2 subnets (ex. 10.0.0.1/24 for the LAN interface and 192.168.1.1/24 for the OPT1 interface), then your routes are created automagically on the m0n0wall (both subnets are on a local interfaces of the m0n0wall). The only thing you will need to do to enable traffic between hosts on both subnets, is be shure to configure the clients. Make shure your default gateway on these clients point to the respective IP-addresses of m0n0wall (ex. 10.0.0.1 for LAN clients, 192.168.1.1 for OPT1 clients), but this should be done by the m0n0wall's internal DCHP-server already. Make shure the subnets of both interfaces do not overlap! > I have rules to pass any on LAN -> any and any on OPT1 -> any. (would > like to restrict this a bit, but for now I use these very > open rules to > ensure it isn't the rules being too strict that cause the > problems. I've > even tried setting the source to any as well, but the above rules work > for my brother.) These rules seem fine. > Sometimes, as I've experimented with these, I succeed in getting > m0n0wall to stop responding. Usually a manual reboot will > cure this. Is > this due to me accidentially setting up some kind of "bad" > static route > (ie causing some kind of loop) or is this a bug in m0n0wall? (If not a > bug, could you provide a, very short, tutorial as to how a typical > static route between two interfaces/subnets will look?) All depends on the routes you are creating. If you create routes that interfere with the routes created for the interfaces' local subnets, you can mess up :-). Regards, Joachim ----------------------------------------------- MISSION STATEMENT ----------------------------------------------- Océ enables its customers to manage their documents efficiently and effectively by offering innovative print and document management products and services for professional environments. ----------------------------------------------- DISCLAIMER ----------------------------------------------- This e-mail message and any attachment are intended for the sole use of the recipient(s) named above and may contain information which is confidential and/or protected by intellectual property rights. Any use of the information contained herein (including, but not limited to, total or partial reproduction, communication or distribution in any form) by other persons than the designated recipient(s) is prohibited. If you have received this e-mail in error, please notify the sender either by telephone (0032-2-729.48.11) or by e-mail and delete the material from any computer. Oce-Belgium/Oce-Interservices is nor responsible for the correct and complete transfer of the contents of the sent e-mail, neither for the receipt on due time. This e-mail message does not bring about a contractual obligation for Oce-Belgium/Oce-Interservices. Thank you for your cooperation. For further information about Oce-Belgium/Oce-Interservices please see our website at www.oce.be ----------------------------------------------- |