Can I route all outbound traffic through one interface on Linux?












0















I'm using a Raspberry Pi with Raspbian GNU/Linux 9.6 (stretch) as a firewall.



I would like to:




  1. route all traffic to 192.168.1.1 through eth0 (192.168.1.144), where 192.168.1.1 is the router that connects to the internet

  2. route all traffic to the rest of the home network 192.168.1.0/24 through eth1 (192.168.1.196)

  3. route all traffic coming from the various access points (dd-wrt routers, 192.168.1.2, 192.168.1.36 and 192.168.1.72 respectively) to 192.168.1.196

  4. and from there to 192.168.1.144 and out to the internet via 192.168.1.1


How should I set this up?



These two questions seem to give conflicting answers, at least to networking-rookie-me:




  • Forwarding all incoming traffic on eth0 to go to eth1


  • Is it possible to configure a NAT routing device to have the same subnet on both WAN and LAN interfaces?


Thanks










share|improve this question























  • Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (iptables or packages using iptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.

    – dirkt
    Jan 23 at 6:14
















0















I'm using a Raspberry Pi with Raspbian GNU/Linux 9.6 (stretch) as a firewall.



I would like to:




  1. route all traffic to 192.168.1.1 through eth0 (192.168.1.144), where 192.168.1.1 is the router that connects to the internet

  2. route all traffic to the rest of the home network 192.168.1.0/24 through eth1 (192.168.1.196)

  3. route all traffic coming from the various access points (dd-wrt routers, 192.168.1.2, 192.168.1.36 and 192.168.1.72 respectively) to 192.168.1.196

  4. and from there to 192.168.1.144 and out to the internet via 192.168.1.1


How should I set this up?



These two questions seem to give conflicting answers, at least to networking-rookie-me:




  • Forwarding all incoming traffic on eth0 to go to eth1


  • Is it possible to configure a NAT routing device to have the same subnet on both WAN and LAN interfaces?


Thanks










share|improve this question























  • Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (iptables or packages using iptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.

    – dirkt
    Jan 23 at 6:14














0












0








0








I'm using a Raspberry Pi with Raspbian GNU/Linux 9.6 (stretch) as a firewall.



I would like to:




  1. route all traffic to 192.168.1.1 through eth0 (192.168.1.144), where 192.168.1.1 is the router that connects to the internet

  2. route all traffic to the rest of the home network 192.168.1.0/24 through eth1 (192.168.1.196)

  3. route all traffic coming from the various access points (dd-wrt routers, 192.168.1.2, 192.168.1.36 and 192.168.1.72 respectively) to 192.168.1.196

  4. and from there to 192.168.1.144 and out to the internet via 192.168.1.1


How should I set this up?



These two questions seem to give conflicting answers, at least to networking-rookie-me:




  • Forwarding all incoming traffic on eth0 to go to eth1


  • Is it possible to configure a NAT routing device to have the same subnet on both WAN and LAN interfaces?


Thanks










share|improve this question














I'm using a Raspberry Pi with Raspbian GNU/Linux 9.6 (stretch) as a firewall.



I would like to:




  1. route all traffic to 192.168.1.1 through eth0 (192.168.1.144), where 192.168.1.1 is the router that connects to the internet

  2. route all traffic to the rest of the home network 192.168.1.0/24 through eth1 (192.168.1.196)

  3. route all traffic coming from the various access points (dd-wrt routers, 192.168.1.2, 192.168.1.36 and 192.168.1.72 respectively) to 192.168.1.196

  4. and from there to 192.168.1.144 and out to the internet via 192.168.1.1


How should I set this up?



These two questions seem to give conflicting answers, at least to networking-rookie-me:




  • Forwarding all incoming traffic on eth0 to go to eth1


  • Is it possible to configure a NAT routing device to have the same subnet on both WAN and LAN interfaces?


Thanks







linux networking






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Jan 22 at 6:40









simonesimone

1215




1215













  • Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (iptables or packages using iptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.

    – dirkt
    Jan 23 at 6:14



















  • Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (iptables or packages using iptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.

    – dirkt
    Jan 23 at 6:14

















Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (iptables or packages using iptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.

– dirkt
Jan 23 at 6:14





Does your RaspPi do NAT (network access translation)? Do you have any actual firewall rules (iptables or packages using iptables)? If no to both questions, it's a pure routing problem, and you can solve it with policy routing (google) for the "route traffic from ..." cases. A bunch of routing rules should suffice.

– dirkt
Jan 23 at 6:14










0






active

oldest

votes











Your Answer








StackExchange.ready(function() {
var channelOptions = {
tags: "".split(" "),
id: "3"
};
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function() {
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled) {
StackExchange.using("snippets", function() {
createEditor();
});
}
else {
createEditor();
}
});

function createEditor() {
StackExchange.prepareEditor({
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: true,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: 10,
bindNavPrevention: true,
postfix: "",
imageUploader: {
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
},
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
});


}
});














draft saved

draft discarded


















StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1396892%2fcan-i-route-all-outbound-traffic-through-one-interface-on-linux%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown

























0






active

oldest

votes








0






active

oldest

votes









active

oldest

votes






active

oldest

votes
















draft saved

draft discarded




















































Thanks for contributing an answer to Super User!


  • Please be sure to answer the question. Provide details and share your research!

But avoid



  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.


To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function () {
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2fsuperuser.com%2fquestions%2f1396892%2fcan-i-route-all-outbound-traffic-through-one-interface-on-linux%23new-answer', 'question_page');
}
);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown







Popular posts from this blog

"Incorrect syntax near the keyword 'ON'. (on update cascade, on delete cascade,)

Alcedinidae

Origin of the phrase “under your belt”?