Can I route all outbound traffic through one interface on Linux?
0
I'm using a Raspberry Pi with Raspbian GNU/Linux 9.6 (stretch) as a firewall.
I would like to:
- route all traffic to 192.168.1.1 through eth0 (192.168.1.144), where 192.168.1.1 is the router that connects to the internet
- route all traffic to the rest of the home network 192.168.1.0/24 through eth1 (192.168.1.196)
- route all traffic coming from the various access points (dd-wrt routers, 192.168.1.2, 192.168.1.36 and 192.168.1.72 respectively) to 192.168.1.196
- and from there to 192.168.1.144 and out to the internet via 192.168.1.1
How should I set this up?
These two questions seem to give conflicting answers, at least to networking-rookie-me:
- Forwarding all incoming traffic on eth0 to go to eth1
Is it possible to configure a NAT routing device to have the same subnet on both WAN and LAN interfaces?
Thanks
linux networking
asked Jan 22 at 6:40
simonesimone
1215
add a comment |
0
I'm using a Raspberry Pi with Raspbian GNU/Linux 9.6 (stretch) as a firewall.
I would like to:
- route all traffic to 192.168.1.1 through eth0 (192.168.1.144), where 192.168.1.1 is the router that connects to the internet
- route all traffic to the rest of the home network 192.168.1.0/24 through eth1 (192.168.1.196)
- route all traffic coming from the various access points (dd-wrt routers, 192.168.1.2, 192.168.1.36 and 192.168.1.72 respectively) to 192.168.1.196
- and from there to 192.168.1.144 and out to the internet via 192.168.1.1
How should I set this up?
These two questions seem to give conflicting answers, at least to networking-rookie-me:
- Forwarding all incoming traffic on eth0 to go to eth1
Is it possible to configure a NAT routing device to have the same subnet on both WAN and LAN interfaces?
Thanks
linux networking
asked Jan 22 at 6:40
simonesimone
1215
Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (iptablesor packages usingiptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.
– dirkt
Jan 23 at 6:14
add a comment |
0
0
0
I'm using a Raspberry Pi with Raspbian GNU/Linux 9.6 (stretch) as a firewall.
I would like to:
- route all traffic to 192.168.1.1 through eth0 (192.168.1.144), where 192.168.1.1 is the router that connects to the internet
- route all traffic to the rest of the home network 192.168.1.0/24 through eth1 (192.168.1.196)
- route all traffic coming from the various access points (dd-wrt routers, 192.168.1.2, 192.168.1.36 and 192.168.1.72 respectively) to 192.168.1.196
- and from there to 192.168.1.144 and out to the internet via 192.168.1.1
How should I set this up?
These two questions seem to give conflicting answers, at least to networking-rookie-me:
- Forwarding all incoming traffic on eth0 to go to eth1
Is it possible to configure a NAT routing device to have the same subnet on both WAN and LAN interfaces?
Thanks
linux networking
asked Jan 22 at 6:40
simonesimone
1215
I'm using a Raspberry Pi with Raspbian GNU/Linux 9.6 (stretch) as a firewall.
I would like to:
- route all traffic to 192.168.1.1 through eth0 (192.168.1.144), where 192.168.1.1 is the router that connects to the internet
- route all traffic to the rest of the home network 192.168.1.0/24 through eth1 (192.168.1.196)
- route all traffic coming from the various access points (dd-wrt routers, 192.168.1.2, 192.168.1.36 and 192.168.1.72 respectively) to 192.168.1.196
- and from there to 192.168.1.144 and out to the internet via 192.168.1.1
How should I set this up?
These two questions seem to give conflicting answers, at least to networking-rookie-me:
- Forwarding all incoming traffic on eth0 to go to eth1
Is it possible to configure a NAT routing device to have the same subnet on both WAN and LAN interfaces?
Thanks
linux networking
linux networking
asked Jan 22 at 6:40
simonesimone
1215
asked Jan 22 at 6:40
simonesimone
1215
asked Jan 22 at 6:40
simonesimone
1215
asked Jan 22 at 6:40
simonesimone
1215
asked Jan 22 at 6:40
simonesimone
1215
1215
Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (iptablesor packages usingiptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.
– dirkt
Jan 23 at 6:14
add a comment |
Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (iptablesor packages usingiptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.
– dirkt
Jan 23 at 6:14
Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (
iptables or packages using iptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.– dirkt
Jan 23 at 6:14
Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (
iptables or packages using iptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.– dirkt
Jan 23 at 6:14
add a comment |
0
active
oldest
votes
Your Answer
StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});
function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});
}
});
draft saved
draft discarded
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1396892%2fcan-i-route-all-outbound-traffic-through-one-interface-on-linux%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
0
active
oldest
votes
0
active
oldest
votes
active
oldest
votes
active
oldest
votes
draft saved
draft discarded
Thanks for contributing an answer to Super User!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
draft saved
draft discarded
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1396892%2fcan-i-route-all-outbound-traffic-through-one-interface-on-linux%23new-answer', 'question_page');
}
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function () {
StackExchange.helpers.onClickDraftSave('#login-link');
});
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (
iptablesor packages usingiptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.– dirkt
Jan 23 at 6:14