[ale] Need help with routes

Michael H. Warfield mhw at WittsEnd.com
Thu Aug 9 11:37:51 EDT 2012 

On Thu, 2012-08-09 at 10:37 -0400, Chuck Payne wrote:
> Erik,

> I can't follow. Maybe I should have asked how to you get what is in CentOS/RHEL

Assuming we are talking CentOS/RHEL/SL 6 (use to be different)...

For eth0...

/etc/sysconfig/network-scripts/route-eth0

-- 
172.21.1.0/24 via 10.0.0.254
-- 

For eth1...

/etc/sysconfig/network-scripts/route-eth1

-- 
10.1.0.0/24 via 10.1.0.254
-- 

Not sure what kind of vpn you are talking about but most vpn's don't
require special entries there if the system in question is an endpoint
system for the vpn tunnel itself.  The vpn subsystem will build and tear
down your routes and policies as required by the vpn has it comes and
goes.  Generally, setting up static routes here are almost guaranteed to
fail unless it's a vpn that's anchored on that gateway.  If you're doing
something like this on the system that's actually setting up the vpn
then you are almost certainly doing something wrong if it's an OpenVPN
(routed) or Openswan/IPsec (policy) vpn.  Also true of Cisco ASA based
Anyconnect / OpenConnect type vpns.

Regards,
Mike

> route-eth0
> 
> I was told that I could set that up with iproute2. I see from what you
> have give em this...
> 
> Setup system's static routes based on the "/etc/network/routes" definition
> 
> How can I set that up?
> 
> Chuck
> 
> On Thu, Aug 9, 2012 at 7:54 AM, Erik Mathis <erik at mathists.com> wrote:
> > I'm assuming you wanted persistent routes?
> >
> > http://www.debian.org/doc/manuals/debian-reference/ch05.en.html
> >
> > The quick and dirty to add a route with iproute2
> >
> > ip ro add 1.2,3.4/net via ${gateway}
> >
> > -Erik-
> >
> > On Wed, Aug 8, 2012 at 4:36 PM, Chuck Payne <terrorpup at gmail.com> wrote:
> >> Guys,
> >>
> >> I am trying to get a proxmox ve server up and running. I am trying to
> >> get routes working on this server, proxmox ve using debian as it's
> >> base.
> >>
> >> This server is our data center, we can access all server from our
> >> office via vpn connection.  Most server that are running RHEL the
> >> route looks like this.
> >>
> >> # route
> >> Kernel IP routing table
> >> Destination     Gateway         Genmask         Flags Metric Ref    Use Iface
> >> 10.0.0.0        *               255.255.255.0   U     0      0        0 eth0
> >> 10.1.0.0        10.1.0.254     255.255.255.0   UG     0      0        0 eth1
> >> 172.21.1.0      10.0.0.254  255.255.255.0   UG    0      0        0 eth0
> >> 169.254.0.0     *               255.255.0.0     U     0      0        0 eth1
> >> default         10.0.0.254  0.0.0.0         UG    0      0        0 eth0
> >>
> >>
> >> 10.0.0.0/24 is prod
> >> 10.1.0.0/24 is backup
> >> 172.21.1.0/24 is vpn
> >>
> >> On the proxmox server I have two nic that are bridge  (vmbr0/eth0) (vmbr1/eth1)
> >>
> >> vmbr0     Link encap:Ethernet  HWaddr 00:13:72:66:71:a5
> >>           inet addr:10.0.0.61  Bcast:10.0.0.255  Mask:255.255.255.0
> >>           inet6 addr: fe80::213:72ff:fe66:71a5/64 Scope:Link
> >>           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
> >>           RX packets:23304 errors:0 dropped:0 overruns:0 frame:0
> >>           TX packets:11507 errors:0 dropped:0 overruns:0 carrier:0
> >>           collisions:0 txqueuelen:0
> >>           RX bytes:1946077 (1.8 MiB)  TX bytes:1433780 (1.3 MiB)
> >>
> >> vmbr1     Link encap:Ethernet  HWaddr 00:13:72:66:71:a7
> >>           inet addr:10.1.0.61  Bcast:10.1.0.255  Mask:255.255.255.0
> >>           inet6 addr: fe80::213:72ff:fe66:71a7/64 Scope:Link
> >>           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
> >>           RX packets:5963 errors:0 dropped:0 overruns:0 frame:0
> >>           TX packets:47 errors:0 dropped:0 overruns:0 carrier:0
> >>           collisions:0 txqueuelen:0
> >>           RX bytes:561867 (548.6 KiB)  TX bytes:2190 (2.1 KiB)
> >>
> >>
> >> I understand in Debian you need to use iproute2 to make the route
> >> static, correct? Here what have, but I am not sure if it goes int othe
> >>
> >> --
> >> Terror PUP a.k.a
> >> Chuck "PUP" Payne
> >>
> >> (678) 636-9678
> >> -----------------------------------------
> >> Discover it! Enjoy it! Share it! openSUSE Linux.
> >> -----------------------------------------
> >> openSUSE -- en.opensuse.org/User:Terrorpup
> >> openSUSE Ambassador/openSUSE Member
> >> Community Manager -- Southeast Linux Foundation (SELF)
> >> skype,twiiter,identica,friendfeed -- terrorpup
> >> freenode(irc) --terrorpup/lupinstein
> >> Register Linux Userid: 155363
> >>
> >> Have you tried SUSE Studio? Need to create a Live CD,  an app you want
> >> to package and distribute , or create your own linux distro. Give SUSE
> >> Studio a try. www.susestudio.com.
> >> See you at Southeast Linux Fest, June 8-10, 2012 in Charlotte, NC.
> >> www.southeastlinuxfest.org
> >> _______________________________________________
> >> Ale mailing list
> >> Ale at ale.org
> >> http://mail.ale.org/mailman/listinfo/ale
> >> See JOBS, ANNOUNCE and SCHOOLS lists at
> >> http://mail.ale.org/mailman/listinfo
> > _______________________________________________
> > Ale mailing list
> > Ale at ale.org
> > http://mail.ale.org/mailman/listinfo/ale
> > See JOBS, ANNOUNCE and SCHOOLS lists at
> > http://mail.ale.org/mailman/listinfo
> 
> 
> 
> -- 
> Terror PUP a.k.a
> Chuck "PUP" Payne
> 
> (678) 636-9678
> -----------------------------------------
> Discover it! Enjoy it! Share it! openSUSE Linux.
> -----------------------------------------
> openSUSE -- en.opensuse.org/User:Terrorpup
> openSUSE Ambassador/openSUSE Member
> Community Manager -- Southeast Linux Foundation (SELF)
> skype,twiiter,identica,friendfeed -- terrorpup
> freenode(irc) --terrorpup/lupinstein
> Register Linux Userid: 155363
> 
> Have you tried SUSE Studio? Need to create a Live CD,  an app you want
> to package and distribute , or create your own linux distro. Give SUSE
> Studio a try. www.susestudio.com.
> See you at Southeast Linux Fest, June 8-10, 2012 in Charlotte, NC.
> www.southeastlinuxfest.org
> _______________________________________________
> Ale mailing list
> Ale at ale.org
> http://mail.ale.org/mailman/listinfo/ale
> See JOBS, ANNOUNCE and SCHOOLS lists at
> http://mail.ale.org/mailman/listinfo
> 

-- 
Michael H. Warfield (AI4NB) | (770) 985-6132 |  mhw at WittsEnd.com
   /\/\|=mhw=|\/\/          | (678) 463-0932 |  http://www.wittsend.com/mhw/
   NIC whois: MHW9          | An optimist believes we live in the best of all
 PGP Key: 0x674627FF        | possible worlds.  A pessimist is sure of it!
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 482 bytes
Desc: This is a digitally signed message part
Url : http://mail.ale.org/pipermail/ale/attachments/20120809/fc2f3fd7/attachment.bin

More information about the Ale mailing list