[Server-devel] Bridging XS to another network

Jerry Vonau jvonau at shaw.ca
Sun Oct 31 19:13:19 EDT 2010 

On Mon, 2010-11-01 at 08:55 +1100, David Leeming wrote:
> Still no luck here. What it boils down to, is that when placing the XS
> (eth1 - LAN) behind a router with NAT, in order to allow the XS web
> service to be visible on the external WAN side of the router, what are
> the required LAN IP settings including netmask and firewall settings,
> including port forwarding or DMZ Host or other. Anna, you seem to have
> been able to do that but I can’t replicate without more info on your
> router/firewall settings.
> 
>  
> 
> I have tried everything I can think of and the XS is not visible from
> the external network.  Only need to be able to see Moodle, etc, (not
> interested in registering XOs on the external network) 
> 
>  
> 
> David Leeming
> 
> Solomon Islands Rural Link 
> P.O.Box 652 Honiara, Solomon Islands
> 
> +677 7476396 (m) +677 24419 (h)
> 
> www.leeming-consulting.com
> 
> 
>  
> 
> From: server-devel-bounces at lists.laptop.org
> [mailto:server-devel-bounces at lists.laptop.org] On Behalf Of David
> Leeming
> Sent: Sunday, 31 October 2010 11:38 a.m.
> To: 'Anna'
> Cc: 'XS Devel'
> Subject: Re: [Server-devel] Bridging XS to another network
> 
> 
>  
> 
> Anna,
> 
>  
> 
> What you describe below is what I am trying to do (see the net diagram
> in my other email). I only want apache/Moodle/wiki to be available to
> the external network (your “regular LAN”). You’ll see that I have a
> simple WRT54G router bridging but no matter what I try, I can’t see
> the apache service through the router. Can you say what Wan and LAN
> settings you used for your router? 
> 
> I used
> 
> WAN – fixed 192.168.1.88 / 255.255.255.0
> 
> LAN – fixed 172.18.0.88 / 255.255.255.0
> 
> Port 80 forwarded from WAN to 172.18.0.1 (or DMZ host with 171.18.0.1)
> 
> In this set up: 
> 
> If I try to ping from the XS to 172.18.0.88 it is OK, if I try to
> 192.168.0.88 it says network unreachable.
> 


You have a single interface in use, in order for the XS to see past
anything other than what routes that are present(these are local to the
lan), what your missing is the default gateway. 


> But if I use a PC hooked up on the eth1 network, with fixed IP
> 172.18.0.89 / 255.255.255.0 (for example) I can ping the WAN address
> and beyond. This is what leads me to think it needs one extra step
> with route, or it may be something to do with the WRT LAN setting and
> XS having different netmasks. You can see I am reaching at straws a
> little L  


No, you need to have a default gateway present, how are you configuring
172.18.0.88 on the XS?

Jerry

More information about the Server-devel mailing list