Do you have two separate ISP connections? Are the two systems in
physically different locations away from each other? I reason I ask, you
could do all of this with one m0n0wall box, might make configuration a
lot easier since you can setup one monowall box with two separate lan
segments and use a single WAN to handle multiple IP addresses if it's
the same ISP for both of them.
Thanks,
Michael
Daniel Davis wrote:
> Hi,
>
> I am having an issue routing between my LAN2 and OPT2. The network is
> set up as such:
>
>
> WAN1 WAN2
> | |
> | |
> m0n01 ----- LAN1 ----- (SWITCH) ----- OPT2 ----- m0n01
> | |
> | |
> OPT1 LAN2
>
>
> There are two m0n0wall boxes (m0n01 and m0n02) each with three
> interfaces.
> I need to keep LAN2 protected from LAN1 but I need access to LAN1 from
> LAN2.
>
> OPT1 - Is on 192.168.2.0/24 (OPT1 IP 192.168.2.254)
> LAN1 - Is on 192.168.1.0/24 (LAN1 IP 192.168.1.254)
> LAN2 - Is on 192.168.0.0/24 (LAN2 IP 192.168.0.1)
> OPT2 - Has address 192.168.1.4
>
> If I set up all the firewall rules to allow access from LAN1 to LAN2
> (with a static route on m0n01 that points 192.168.0.0/24 requests to
> 192.168.1.4) I can ping everything on LAN2 from LAN1 but I can't ping
> anything on LAN1 (Other than the OPT2 interface address: 192.168.1.4)
> from LAN2.
>
> Basically the set up is as follows:
>
> WAN1 is for all Client internet access.
> LAN1 is for all Internet Cafe computers.
> OPT1 is for Client Wireless access (Through RADIUS authenticated Captive
> Portal)
> WAN2 is for our Administration Office internet access
> LAN2 is for the Administration Office network
>
> I want to be able to administer all the computers on LAN1 from LAN2 but
> have been unable to get the routing working properly. Can anyone help me
> out where I have gone wrong?
>
> Regards,
>
> Daniel Davis
> //
>
>
> ---------------------------------------------------------------------
> To unsubscribe, e-mail: m0n0wall dash unsubscribe at lists dot m0n0 dot ch
> For additional commands, e-mail: m0n0wall dash help at lists dot m0n0 dot ch
>
| 