Routing between two network cards
I have 8 fiber switches that are configured to use a private network for management.
The subnet is 192.168.8.0/24.
I have a W2K3 (SERVER A) server with two NICS, a NIC (192.168.8.1) is attached to
the 192.168.8.0 subnet and the other (192.168.100.14) NETWORK adapter is attached to the subnet 192.168.100.0/24.
I put up two persistent routes of road between these NICS using the following commands:
Pei route add 192.168.8.0 mask 255.255.255.0 192.168.100.14
Pei route add 192.168.100.0 mask 255.255.255.0 192.168.8.1
I have an other W2K3 server (SERVER B) with a single NETWORK (192.168.100.12) card that must be able
to connect with the fiber switches via tcp/ip. Packets should be routed to this server.
On that I put in place a permanent route:
Pei route add 192.168.8.0 mask 255.255.255.0 192.168.100.14
Everything works very well.
(Assumes that the SERVER-A and SERVER B are now turned off)
I'm trying to reproduce this on my VMware ESX Server 3.5upd3.
ESX server has two NICS, one attached to each of the subnets. I create a virtual machine to replace SERVER-a
with the same number of network cards and the same IP addresses.
I then create routes as follows:
Pei route add 192.168.8.0 mask 255.255.255.0 192.168.100.14
Pei route add 192.168.100.0 mask 255.255.255.0 192.168.8.1
PROBLEM: as soon as I add the second route I can no longer ping any server on the 192.168.100.0 subnet.
This also causes connections to last very long.
Do I need to implement routing between network adapters ESX scale to make this work?
If so maybe want the command look like? If not, what could be my problem?
Thank you for the helpful answers
If you want to configure your machine as a router, you will need to notify the router is the next hop. Now, the next machine break is its own interfaces, which will not work. And since you are running some sort of routing protocol, provide two solutions to exit the server is not a good idea, because he doesn't know that one to use. It will use 1 for some and another for some.
Do what you intend (or I think you intend), you must delete the static routes and choose a default route, which will be your next jump. This should be another router in your environment. Then, the other servers that you want to route via ServerA, ServerA interface on this segment would remind you.
Hope that makes sense.
-KjB
Tags: VMware
Similar Questions
-
Communication between two network cards on windows 2003
Hi all
I need your help.
I have a machine virtual windows 2003 with two network adapters.
NIC 1 - external - 192.168.1.101
Map NETWORK 2 10.10.10.1 - internal -.
I've configured to operate as a DC and DNS serving 10.10.10.x network.
DNS is configured to resolve before on 192.168.1.1 as redirector DNS requests.
I have other machines connected to the 10.10.10.x network.
They can ping 10.10.10.1, they can ping 192.168.1.101 but not 192.168.1.1
I want to just be able to talk to 192.168.1.1 and be able to access the internet.
No firewall between the two.
Command-line may help, but I would need your help.
Hello Prasad,
The problem you are having is more complex than what is generally answered in the Microsoft Answers forums. It is better suited for the IT Pro TechNet public.
Please post your question in the TechNet Forum.
Hope this helps you solve the problem, if any question you can write us and we will be happy to help you further.
-
Help! Static route between two router WRT160NL
Hi all
I have my internet connection to connect to my main router from Linksys WRT160NL (192.168.1.1) with 192.168.1.x.
My 2nd Linksys router to connect to the first gateway as well.
The 2nd router has the ip 192.168.1.100 WAN and it's a local subnet as 192.168.2.x.My 192.168.2.x machines can access the internet and connect to all the machines in the network 192.168.1.x.
However, the 1.x network cannot access the machines on the network of the 2. And because of that, I can't share or print between two networks.
I try to add static routes on my main router (192.168.1.1) with the road: 192.168.2.0 mask 255.255.255.0 and default gateway 192.168.1.100
However, the road does not work yet.
in any case to ensure that the 1.x network able to access the network 2.x and 2.x access 1.x file and print sharing.
Thanks for your help!
Gateway of the router does NAT who made the side inaccessible side LAN WAN, unless you configure port forwarding automatic or similar. If she would not make your LAN 192.168.1 would be accessible from the internet. Static routing will not change that.
You will need to disable NAT (aka switch to router mode) on the second router. You must configure a static route on the main router then. However, most likely your network 192.168.2 * will not have Internet more because the main router will NAT for 192.168.1. * and no 192.168.2. *.
If possible set up the second router as access point only and run a LAN.
-
Want to use internet to share WRV210 router between two LANs
Hello
I have the following scenario:
A LAN has access to internet via ADSL through a Fortigate 50B (192.168.100.0)
A new LAN (different segment) that should have access to the internet. (192.168.102.0)
Two local networks need to have shared access resources among themselves.
We have a WRV210 router between two LANs (192.168.100.0 WAN, 192.168.102.0 on LAN) configured in router mode.
Resources work very well, but internet does not work.
We receive answers internet addresses on 192.168.102.0 ping and tracert works very well, but we cannot navigate or connect to Skype, msn msg, etc..
We made on fortigate 50B routes this way:
192.168.102.0/255.255.255.0 192.168.100.102 internal
192.168.100.102 is an address WAN WRV210
We tried the gateway mode and internet works fine on 192.168.102.0, but 192.168.100.0 cannot contact 192.168.102.0 resources (obviously)
What can be wrong in case of ping and tracert works very well, but nothing else works?
Hi Willy,.
You need the WRV210 in not the router mode gateway mode.
Gateway mode active Stateful inspection, which will address translation from private to public IP addresses and NAT....
"But I think that the VLAN on the router segments members to talk to other members on the other vlan, so your comment.
Two local networks need to have shared access resources among themselves. "creates a problem.
.
A community previous publication says "with Port Based VLAN on the WRV210, there is no VLAN tagging and so on." It's more like say port 1 not to talk to port 2, because they are on separate physically designated VLAN (even if on the same subnet) and it is far as it goes. But with your configuration you want also to have the 2nd SSID do not talk to any wired client based on the RVS4000 as well? If so, this facility would not work because all wireless clients would be able to talk to cable customers and vice versa. But if you primary concern is simply to prevent the SSID 1 speaking with 2 SSID, it's doable in the page VLAN for the WRV210.
So if you want the WRV210 to allow switching between the VLAN port basis, it won't work the way it is set up now...
If you want to restrict access between IP hosts, I suggest using the list feature to access a managed switch that focuses on the PC or servers. A switch may be as a series of 200 or 300 small businesses switch, see URL below...
http://www.Cisco.com/en/us/products/ps10898/prod_models_comparison.html
But then allow all ports to be a member of the VLAN by default. I hope that I read your question correctly
Best regards, Dave
-
Using user accounts to swich between different network cards
Hi allI have two user accounts and two network cards.
An account (domain)Account B (local computer)Is it possible-When I connect to an account, a card is activated and B adapter is disabled.-When I connect to the B account, B adapter is enabled and a card is disabled.-When I logoff A / B, A / adapter B are all two resumed.Thank you!Hi AllenLee910,
The issue of Windows XP, you have posted is related to Windows XP in a domain environment. It is better suited for the IT Pro TechNet public. Please ask your question in the TechNet forums for assistance.
Hope the helps of information.
-
Is - a used the 3602e as a bridgeing only between two networks?
Is - a used the 3602e as a bridgeing only between two networks? 2504 controller version 7.4.100 I can't ping anything on one side or the other of the network, but I can ping from each access point controller. I have two 1552 setup the same way with no problems. Anyone seen this before?
Thank you!
In the case of 3602e as bridge link and you bet the config is a working one, then I would check the antennas if they are properly aligned, if you use a higher gain, a good one would be a necessary in the case of 3602e, I think that Yes.
-
Between two networks of rooting
Hi all
I want to test a network topology that includes 5 pc is connected to the same switch. The problem is that I want to have the first 3 pc with ip 192.168.1.x and the rest 2 with ip 192.168.2.x.
Is it possible, through Vmware Workstation?
Thank you in advance.
Of course it is possible.
You run 5 images on the same box.
The only thing you need to do is activate the functionality of routing on the host machine or on any of the virtual machines with 2 cards NIC.
In case you are referring to 5 virtual machines running on VMware ESX Server you can enable the routing feature by adding two NIC cards.
You can use any OS and enable routing.
Kind regards
Deepak Shukla
-
Hello
I have two VMware images: a windows 2003 server and another company of red hat running on my mac with vmware fusion. Two of them are to be only one host mode and I manually assigned a static IP address to those servers to vmware. Thier is a situation that I can't change the static IP address.
Vmserver1: 192.168.1.102
255.255.255.0
192.168.1.1
Vmserver2: 10.2.18.28
255.255.255.0
10.2.18.1
How to define two communications between these two servers. (sending between two servers).
Thanks in advance!
Happy the ifconfig worked for you. This is the approach I usually take too.
-
How to make a route between two routers (networks) connected to the same switch?
Hello guys, how are you?
In my company, we have 2 internet routers more dsl router of data connected to 1 switch line
the data row is used to connect the branches of our company together for network problems.
the router 192.168.2.1 IP data
internet routers IP 192.168.1.1 - 57.194.97.1
We have 3 accesspoints wireless taking their internet of 192.168.1.1 oky guy
what I want to do is when I connect to any wireless network to connect to the data line dsl with router 192.168.2.1
When I use the ethernet on my pc I have IP addresses 192.168.2.222 for router data line and 192.168.1.222 for internet
but the wireless is DHCP n that it is connected only to 192.168.1.1, which is the internet router, how can I do 192.168.1.1 192.168.2.1 when I connect
using the wireless?
I hope that you understand me ^_^
Thanks in advance.
Hello
The question you posted would be better suited to the TechNet community. Please visit the link below to find a community that will provide the support you want.
http://social.technet.Microsoft.com/forums/en/category/w7itpro/
Hope this information is useful.
-
VPN IPSEC between two networks
Hello-
For these last days, I've been banging my head against the wall with this problem.
I have two IP networks that have the same IP that I need to create an IPSEC tunnel between.
Here's a crude diagram:
192.168.1.0/24--[Cisco 1920] - Internet-[cisco RV082]--192.168.1.0/24
I know that I should make some sort of NAT, but from what I've been through the RV082 it's not like he can do it.
I tried to get this work is this:
192.168.1.0/24--[Cisco 1920] - Internet-[cisco RV082]-192.168.33.0/24-[Belkin N300 consumer router]--192.168.1.0/24
But once I changed LAN IP of Belkin 192.168.1.1/24 I lost connectivity to the "WAN" port, I was clicking on the side LAN of 1920. (I think he was trying to route the traffic via the LAN port is even if it is entered on its WAN port)
Someone has some tips to get me going in the right direction?
Thank you
Greg Smythe
Hi Greg,.
If you have same subnet on both ends, then Yes you are right the NAT is the only option. You need to do NAT on both devices. As you say that RV is unable to do so I don't think that if you have any othe roption to change the subnet on one of the end. Which is not an easy option
Thank you
Jeet
-
Routing between two VLANs on a switch in series SG300
I've seen a lot of messages from people with problems of traffic between the two routing VLANS with some complex examples. Can someone show a simple example for a SG300 switch (in layer 3 mode) to set up the two VLAN and send the traffic between VLANS without an external router?
VLAN1 10.10.10.0
VLAN2 10.10.20.0
I tried to do through the UI and can't seem to make it work. It seems that it must be very simple, so maybe I'm missing something in the GUI.
Hi Chris,
I did 5 minutes of recording that showed how I configured the two VLAN on my SG300 switch and layer 3-switched between the VLANS.
You have no trouble getting to the GUI, so you will have no difficulty to setup in a few minutes...
- Be sure to use the latest version of the SG300 package, with a bearable CLI.
- to save your changes to the configuration at the end of the process.
- the IP addresses that you create will be the address of default gateway for PC hosts on VLANs specified.
- Recording can be interrupted at any time to perform configuration operations.
Recording is now available on the website of the WebEx service. Click on the link below to read:
https://Cisco.WebEx.com/ciscosales/LSR.php?at=PB&SP=MC&rID=55688352&RKEY=05e1fc5fff0d05da
Configuration of VLAN
Monday, October 24, 2011 11:02 New York time
5 minutes
Have fun
Best regards, Dave
-
Routing between two remote sites connected over the VPN site to site
I have a problem ping between remote sites. Now the Cryptography and no nat ACL's for different sites just to affect traffic between the remote site and main site. I tried to add roads, adding other subnets to the crypto and no. ACL Nat at the remote sites... nothing worked. Any ideas?
Main site:
192.168.100.0 - call manager / phone VLAN
192.168.1.0/24 - data VLAN
Site 1:
192.168.70.0/24 - phone VLAN
192.168.4.0/24 - data VLAN
Site 2:
192.168.80.0/24 - phone VLAN
192.168.3.0/24 - data VLAN
Main router
Expand the IP ACL5 access list
10 permit ip 192.168.1.0 0.0.0.255 192.168.70.0 0.0.0.255
20 ip 192.168.1.0 allow 0.0.0.255 192.168.4.0 0.0.0.255
30 permits ip 192.168.100.0 0.0.0.255 192.168.4.0 0.0.0.255
IP 192.168.100.0 allow 40 0.0.0.255 192.168.70.0 0.0.0.255)
50 permit ip 10.255.255.0 0.0.0.255 192.168.70.0 0.0.0.255
Expand the IP ACL6 access list
10 permit ip 192.168.1.0 0.0.0.255 192.168.80.0 0.0.0.255
20 ip 192.168.1.0 allow 0.0.0.255 192.168.3.0 0.0.0.255
30 permits ip 192.168.100.0 0.0.0.255 192.168.3.0 0.0.0.255
IP 192.168.100.0 allow 40 0.0.0.255 192.168.80.0 0.0.0.255Expand the No. - NAT IP access list
10 deny ip 192.168.2.0 0.0.0.255 192.168.70.0 0.0.0.255
20 deny ip 192.168.200.0 0.0.0.255 192.168.4.0 0.0.0.255
30 deny ip 192.168.2.0 0.0.0.255 192.168.80.0 0.0.0.255
40 deny ip 192.168.200.0 0.0.0.255 192.168.3.0 0.0.0.255
320 ip 192.168.1.0 allow 0.0.0.255 any
IP 192.168.100.0 allow 330 0.0.0.255 anySite 1:
ACL5 extended IP access list
IP 192.168.70.0 allow 0.0.0.255 192.168.1.0 0.0.0.255
ip licensing 192.168.4.0 0.0.0.255 192.168.100.0 0.0.0.255
IP 192.168.70.0 allow 0.0.0.255 192.168.100.0 0.0.0.255
ip licensing 192.168.4.0 0.0.0.255 192.168.1.0 0.0.0.255
IP 192.168.70.0 allow 0.0.0.255 10.255.255.0 0.0.0.255
No. - NAT extended IP access list
deny ip 192.168.70.0 0.0.0.255 192.168.1.0 0.0.0.255
refuse the 192.168.4.0 ip 0.0.0.255 192.168.100.0 0.0.0.255
deny ip 192.168.70.0 0.0.0.255 192.168.100.0 0.0.0.255
refuse the 192.168.4.0 ip 0.0.0.255 192.168.1.0 0.0.0.255
deny ip 192.168.70.0 0.0.0.255 10.255.255.0 0.0.0.255
IP 192.168.70.0 allow 0.0.0.255 any
ip licensing 192.168.4.0 0.0.0.255 any
Site 2:
ACL6 extended IP access list
IP 192.168.80.0 allow 0.0.0.255 192.168.1.0 0.0.0.255
ip licensing 192.168.3.0 0.0.0.255 192.168.100.0 0.0.0.255
IP 192.168.80.0 allow 0.0.0.255 192.168.100.0 0.0.0.255
ip licensing 192.168.3.0 0.0.0.255 192.168.1.0 0.0.0.255
IP 192.168.80.0 allow 0.0.0.255 10.255.255.0 0.0.0.255
No. - NAT extended IP access list
deny ip 192.168.80.0 0.0.0.255 192.168.1.0 0.0.0.255
deny ip 192.168.3.0 0.0.0.255 192.168.100.0 0.0.0.255
deny ip 192.168.80.0 0.0.0.255 192.168.100.0 0.0.0.255
deny ip 192.168.3.0 0.0.0.255 192.168.1.0 0.0.0.255
deny ip 192.168.80.0 0.0.0.255 10.255.255.0 0.0.0.255
IP 192.168.80.0 allow 0.0.0.255 any
ip licensing 192.168.3.0 0.0.0.255 anyWhat should I do for these two sites can ping each other? I looked through the forums but can't seem to find someone with a similar problem, which has received a definitive answer.
Thanks in advance!
Hi, I assume that you need site 1 and 2 to communicate with each other via the main site right? If this is the case, then you need to set add the following lines to your ACL crypto:
Main router
Expand the IP ACL5 access list
IP 192.168.80.0 allow 0.0.0.255 192.168.70.0 0.0.0.255
IP 192.168.80.0 allow 0.0.0.255 192.168.4.0 0.0.0.255
ip licensing 192.168.3.0 0.0.0.255 192.168.70.0 0.0.0.255
ip licensing 192.168.3.0 0.0.0.255 192.168.4.0 0.0.0.255
Expand the IP ACL6 access list
IP 192.168.70.0 allow 0.0.0.255 192.168.80.0 0.0.0.255
IP 192.168.70.0 allow 0.0.0.255 192.168.3.0 0.0.0.255
ip licensing 192.168.4.0 0.0.0.255 192.168.3.0 0.0.0.255
ip licensing 192.168.4.0 0.0.0.255 192.168.80.0 0.0.0.255
Make sure you add these lines before the last permit
Expand the No. - NAT IP access list
deny ip 192.168.80.0 0.0.0.255 192.168.70.0 0.0.0.255
deny ip 192.168.80.0 0.0.0.255 192.168.4.0 0.0.0.255
deny ip 192.168.3.0 0.0.0.255 192.168.70.0 0.0.0.255
deny ip 192.168.3.0 0.0.0.255 192.168.4.0 0.0.0.255
deny ip 192.168.70.0 0.0.0.255 192.168.80.0 0.0.0.255
refuse the 192.168.4.0 ip 0.0.0.255 192.168.80.0 0.0.0.255
deny ip 192.168.70.0 0.0.0.255 192.168.3.0 0.0.0.255
refuse the 192.168.4.0 ip 0.0.0.255 192.168.3.0 0.0.0.255
Site 1:
ACL5 extended IP access list
IP 192.168.70.0 allow 0.0.0.255 192.168.80.0 0.0.0.255
ip licensing 192.168.4.0 0.0.0.255 192.168.80.0 0.0.0.255
IP 192.168.70.0 allow 0.0.0.255 192.168.3.0 0.0.0.255
ip licensing 192.168.4.0 0.0.0.255 192.168.3.0 0.0.0.255
Make sure that these lines are added before the last permit
No. - NAT extended IP access list
deny ip 192.168.70.0 0.0.0.255 192.168.80.0 0.0.0.255
refuse the 192.168.4.0 ip 0.0.0.255 192.168.80.0 0.0.0.255
deny ip 192.168.70.0 0.0.0.255 192.168.3.0 0.0.0.255
refuse the 192.168.4.0 ip 0.0.0.255 192.168.3.0 0.0.0.255
Site 2:
ACL6 extended IP access list
IP 192.168.80.0 allow 0.0.0.255 192.168.70.0 0.0.0.255
ip licensing 192.168.3.0 0.0.0.255 192.168.70.0 0.0.0.255
IP 192.168.80.0 allow 0.0.0.255 192.168.4.0 0.0.0.255
ip licensing 192.168.3.0 0.0.0.255 192.168.4.0 0.0.0.255
So make sure that these lines are added before the last permit
No. - NAT extended IP access list
deny ip 192.168.80.0 0.0.0.255 192.168.70.0 0.0.0.255
deny ip 192.168.3.0 0.0.0.255 192.168.70.0 0.0.0.255
deny ip 192.168.80.0 0.0.0.255 192.168.4.0 0.0.0.255
deny ip 192.168.3.0 0.0.0.255 192.168.4.0 0.0.0.255
So you're saying good enough your routers with these definitions which will be reached via one main remote sites (sites 1 and 2).
I would like to know if this is what you need.
-
Hi all
I have searched endlessly around things online and try on the firewall and can't seem to find an answer to this problem. Its probably something really simple under my nose!
I use an ASA 5510, which currently has some site to site VPN of distinct connections configured, linking to other Cisco devices on customer networks.
I work from home, so also connect to our network by using remote access VPN (anyconnect) to connect to the network in the data center.
Just to be clear, here's my amazingly stretched; network diagram
--------------
----------------------- ----------------- The problem I have is that I can't connect directly from my house to the customer network, I need to RDP in a server in the data center, then from there, I see network clients.
It routes to be installed somewhere? between VPN? Ive looked in the routing on the firewall options and cand seem to find something that works.
I have searched for this and cannot find answers, even some sources saying its impossible. Surely not?
I have put all your remote LAN segment in a group of objects.
object-group network in REMOTE LANS
network-object 10.151.30.0 255.255.255.248
network-object 212.9.3.72 255.255.255.248
object-network 10.0.21.0 255.255.255.0
network-object 212.9.20.240 255.255.255.248access extensive list ip 10.0.20.0 outside_nat0 allow 255.255.255.0 object-group REMOTE LANS
access extensive ip list outside_nat0 allow REMOTE object-group-LANS 10.0.20.0 255.255.255.0permit same-security-traffic intra-interface
NAT (outside) 0-list of access outside_nat0
Let me know the result
Thank you
-
Okay here is what I did. There are 2 questions.
First of all, tell me if it's fixable. My desktop PC has only one ethernet PCI card b/g/n in it. I also wanted to be able to get 5 GHz on my EA6500 router dual-band. I bought an adapter of 1200AC EW-7822UAC (based on the review of PC Mag of it).
1. I connected through a UBS 3.0 cable to plug my PC 3.0 UBS.
2. I have assigned my band 5 GHz of the router a different name on side 2.4 ghz.
3. I put the EW-7822 mode to a mode only (I did it in the hope that this adapter only picking up the 5 GHz and my ethernet card pick up all the 2.4 ghz.) .
Secondly, I Miraki W - FI Stumbler on my cell phone. I have an EA4500 facility under a bridge. Miraki indicates 2.4 ghz routers and their channels (1 and 11), but the 5 GHz SSID shows a channel 0. Miraki displays 5 GHz channels. I set them up as channel 161 on the main router and 153 on the bridge. It shows the strength of the signal from the 2 routers.
I installed Inssider and you can see the SSID of 5 GHz. Maybe Miraki only see the lower part of the 5 GHz band (40 and below)? I have since then to restore the mode on the EW-7822Uac a/n/ac.
-
For a Linux virtual () if I have two network cards
How to detect what nic is the engine of my network?
Can U give information about your linux version.if it is redhat, then you can check with ifconfig-a & can configure configuration gui.
Also give the version of VM workstation.
Maybe you are looking for
-
Home page does not say last FF, update page says that it is what to do?
Under sarch bar on the home page, "warning!" you do not use the latest version of Firefox. Click here... for update now ". When I click, it takes me to the page of Firefox, which tells me that I am using the latest version! I've updated to FF. I boug
-
Show the vertical lines of blue green on Tecra M
I have a blue vertical lines on my laptop screen.They seem to be present when I have a white background (for example, a web page). The lines disappear when I move my mouse over the screen and reappear when the cursor moves. I have no lines on the vid
-
Equium A100 - CD/DVD drive does not
I tried to use the CD drive on the A-100 and it seems not to work - it spins the disc, and the yellow light - however, you can not explore to load the disc or its contents. I thought this might be an OS problem, so I tried with a boot disk - a bootab
-
Lenovo Y460 - my enter key fell out and I can't put it back
Hey guys, I got my Y460 for over 2 years now, very few complaints, although my tab key has fallen but can easily be broken out in place and a part of the computer above the speakers before broken but superglue took care of that - but my enter key fel
-
I don' t have drivers from windows update to my Webcam Compaq CPQ74CAM
I don' t have drivers from windows update to my Webcam Compaq CPQ74CAM