Professional Web Applications Themes

Solaris 9 router - Sun Solaris

Hello, I'm trying to set up a solaris 9 machine as a router. The reason I'm doing this that I want to use it as a firewall later. This is how my network looks: Internet(ISP) | Internet Router 62.62.62.2 | | | 62.62.62.3 (hme0) Solaris 9 machine 62.62.62.4 (le1) | Switch -------------------------------............ | | | 62.62.62..5 62.62.62..6 62.62.62..7 Client Client Client My question is how do I configure the Solaris 9 Machine to route traffic between hme0 and le1. My guess would be a static route of some kind. (NOTE: The ip addresses are fictive, thoug all of the ip ...

  1. #1

    Default Solaris 9 router

    Hello,

    I'm trying to set up a solaris 9 machine as a router.
    The reason I'm doing this that I want to use it as
    a firewall later.
    This is how my network looks:


    Internet(ISP)
    |
    Internet Router
    62.62.62.2
    |
    |
    |
    62.62.62.3 (hme0)
    Solaris 9 machine
    62.62.62.4 (le1)
    |
    Switch
    -------------------------------............
    | | |
    62.62.62..5 62.62.62..6 62.62.62..7
    Client Client Client


    My question is how do I configure the Solaris 9 Machine
    to route traffic between hme0 and le1.
    My guess would be a static route of some kind.


    (NOTE: The ip addresses are fictive, thoug all of
    the ip adresses are global, there is no NAT involved.)
    Rasmus Guest

  2. #2

    Default Re: Solaris 9 router

    george wrote: 
    That is incorrect. If an /etc/defaultrouter file is present the routing
    daemons are not started. The presence of /etc/notrouter sets
    ip_forwarding off.


    Frank Guest

  3. #3

    Default Re: Solaris 9 router

    Rasmus Oudal Edberg wrote:

    [...] 
    [cut]

    One could use the /etc/gateways file to set static routes. In this case
    make sure you ditch the /etc/defaultrouter and /etc/notrouter files. You
    could also create your very own script with "route add ...." commands
    and ndd commands.

    G'luck.

    Frank

    Frank Guest

  4. #4

    Default Re: Solaris 9 router

    Rasmus Oudal Edberg wrote: 

    Your depiction shows the 62.62.62.0/24 subnet being split
    across two separate networks: the one hme0 is on, and the
    one le1 is on. I personally think this is the hard way
    to do things. You'll have to add a separate host route
    for every client on the le1 side.

    The first question to ask is whether this is really true
    or you have just used example IP addresses and I am
    reading too much into your drawing.

    Anyway, if it's a separate subnet on each side, you don't need
    to do anything with routes. The static route added automatically
    when you do ifconfig should be enough to let the Solaris machine
    reach the clients on the le1 side. (However, if it is a separate
    subnet, you might need to do NAT or something.)

    If you are trying to split up the same subnet across two
    ethernets, you can do this, but it will be fairly tricky.
    The Solaris machine will need a separate host route to
    every single client.

    Either way, it's important to be sure that "ip_forwarding"
    is turned on in the kernel. You can check its setting by
    doing "ndd -get /dev/ip ip_forwarding" as root.

    Hope that helps.

    - Logan

    Logan Guest

  5. #5

    Default Re: Solaris 9 router

    I thought it should act as a router automatically by virtue of the fact that
    it has 2 network cards as long as there is no /etc/notrouter file present

    George


    george Guest

  6. #6

    Default Re: Solaris 9 router

    Rasmus Oudal Edberg wrote: 


    There's a lot of good info and links to do just this at
    http://coombs.anu.edu.au/~avalon/

    You need to do much more than set up routing including net masks, ip
    forwarding, NAT, port hiding, etc. Going to the source can't hurt.

    dp

    Dennis Guest

  7. #7

    Default Re: Solaris 9 router

    Logan Shaw <rr.com> writes:
     

    This is true.

     

    Do you know how to add these host routes.

    My network looks like this

    62.62.62.192 netmask 255.255.255.224

    Which means that I have 32 IP adresses that should
    be routed (except the ones used by the router and
    the solaris machine).

     
    Rasmus Guest

  8. #8

    Default Re: Solaris 9 router

    Logan Shaw <rr.com> writes:
     

    This is true.

     

    Do you know how to add these host routes.

    My network looks like this

    62.62.62.192 netmask 255.255.255.224

    Which means that I have 32 IP adresses that should
    be routed (except the ones used by the router and
    the solaris machine).

     
    Rasmus Guest

Similar Threads

  1. Replies: 5
    Last Post: December 30th, 11:30 PM
  2. solaris 10 zone / container question (or Solaris 9)
    By anna in forum Linux / Unix Administration
    Replies: 6
    Last Post: June 23rd, 04:24 PM
  3. dual booting Solaris 8 and Solaris 9
    By Nicole in forum Sun Solaris
    Replies: 4
    Last Post: September 5th, 11:03 AM
  4. Replies: 3
    Last Post: August 13th, 03:43 PM

Bookmarks

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139