Guest Posted January 12, 2009 Share Posted January 12, 2009 I posted this in Help & discussion center also: POST I work in a school, with a network config setup as follows. We have 2 domains - named Curriculum and Admin. To access the internet, we have a Fedora Core 3 (very old I know) proxy server (squid) that contains 3 network cards. 1 from each of the domains, and another that pipes out to the external internet via the local authority. Now, we have recently purchased a Sophos WS1000 web filter, to act as a proxy server. Unfortunately, although it has 2 network cards, in order to join it to our Active Directory it needs to be deployed in a configuration whereby it only sees one network (our Curriculum LAN). We have setup a PC running Fedora 10 to act as an internet gateway/router. Basically it sits between the WS1000 and the internet. We setup the box initally with 2 network cards, one of which connects to the external internet router, and the other to the Curriculum network. Using the Firestarter firewall, we setup to only allow requests to come from the IP of the WS1000, which has the Fedora box setup as it's internet gateway. This works fine, and when clients on Curriculum have the WS1000 configured as proxy, they are able to see the internet and all is well. However, we want to be able to route internet requests from our Admin network, through the WS1000, which sits on Curriculum. So basically, put a 3rd network card in the Fedora 10 box, route traffic from that through the Curriculum card to the WS1000, then back to the Fedora box, to the internet, and then back through the loop to the Admin network. Here is where we get lost, we've tried manually setting the gateway of the Admin card to the IP of the curriculum card, also tried setting up a route to the IP of the WS1000, again using the IP of the Curriculum card as a gateway, but no dice. Does anyone know how we can go about getting this scenario to work? Link to comment Share on other sites More sharing options...
offroadaaron Posted January 12, 2009 Share Posted January 12, 2009 i dunno enough about it except my guess randomly out of nowhere would be. * What does the routing table say? * and can you put a static router in, stating curriculum and admin go to ip 172.*.*.* I could be way off track with this one though Link to comment Share on other sites More sharing options...
Recommended Posts