Questions tagged [routing]
the process by which data packets on communication networks are forwarded into the direction of their ultimate destination by routers.
3,790 questions
0 votes
0 answers
44 views
VPN clients unable to access some network resources
I have a local network behind a Ubuntu server doing NAT, iptables, OpenVPN, and VirtualBox, all IPV4. I need VPN clients to access machines in local network. Local net is 192.168.1.0/24 and VPN net ...
- 1
2 votes
0 answers
59 views
How to setup a VPN inside a Docker container? [closed]
I need to redirect all traffic inside a container to my proxy. I have two scripts using tun2socks and badvpn-tun2socks. The latter is outdated, but here it is: #!/usr/bin/env bash set -euo pipefail ...
1 vote
0 answers
48 views
I need RedHat to use default gateway on LAN NIC but still route WAN traffic out other NIC
RHEL 7.9 (will be upgrading soon). It's purpose is to host a commercial java based server/client app. The machine has two NICs: one for private LAN and one for public internet WAN. The purpose of the ...
1 vote
0 answers
55 views
How to split Cisco smart switch into two isolated networks [closed]
I have a 10-port Cisco SG-300 smart switch that I want to split in half. My PF Sense router/firewall has two Ethernet ports, where the LAN port outputs a VPN-protected connection, and its OPT2 port ...
- 19
1 vote
1 answer
116 views
Hosts from two subnets on the same interface can't see each other
Debian 12 acts as a hypervisor with virtual machines. There is a dummy interface, which I called veth0. It has two IP addresses for two subnets: 10.173.177.1/24 and 10.45.113.1/24 (public subnets, hid ...
- 111
0 votes
0 answers
75 views
Sonicwall firewall unable to setup untrusted devices to access a specific device on trusted zone on different subnet
I'm trying to setup two zones (trusted and untrusted) on my Sonicwall firewall. Lan X0, X3, X4 are assigned to trusted zone with IP 172.16.1.x. X2 is assigned to untrusted zone with IP 172.16.2.x My ...
- 1
0 votes
0 answers
76 views
Optimal way to proxy SRT streams (bidirectional)
I guess I know the answer (I dived into research for 2-3 days already), but I would like to hear an expert's option on that. I have MediaMTX server in Singapure (mainly SRT ingress/egress and WebRTC ...
0 votes
0 answers
32 views
OpenVPN client cannot reconnect when connectivity goes down and comes back
I have a OpenVPN server and several clients that work well. I have a specific problem with one client running Ubuntu 18 and OpenVPN client v2.4.4. The client can connect to the VPN but if the ...
- 99
0 votes
0 answers
22 views
PBR - Ubnt edgerouter - SNAT towards some destination, not others
I have a case where I need UBQT Edgerouters to NAT towards one net, but not another: In short, I have a Edgerouter X with two interfaces: Name IP eth0 192.168.1.1 eth1 172.16.1.1 I want all traffic ...
- 11.9k
0 votes
0 answers
53 views
Static Routes Not Connecting
Attempting to get static routes to cross from one router to another. There are two PFSense routers in a stub network called tailscale. Each of the two routers has a physical Proxmox server. I have ...
3 votes
1 answer
247 views
Internal routing with two firewalls
I used to operate a network with a single firewall (Sophos UTM) that had a foot in multiple VLANs and performed as router in between those where allowed. For more security I added a second firewall ...
- 133
0 votes
1 answer
62 views
how to ignore route with lower metric when timeout (linux)
I have two network interfaces: wg0 and wg1 (wireguard). Via both of these, it is possible to reach (ipv6) address fc00:77ee::4, but wg1 can only reach the address if it is in a local network. the ...
0 votes
1 answer
144 views
Access to remote network via OpenVPN
I have the following infrastructure: Remote VM in the cloud, which has eth0 interface looking to the local vpc network, say 10.129.0.0/24. This machine is accessible via real ip address from the ...
- 57
0 votes
0 answers
51 views
Traceroute through VPN only works one way linux
I am pulling my hair out on this issue, I am missing something but cannot find what. I have two separate networks in two different locations. In one location, I have multiple sub-networks separated by ...
- 1
0 votes
1 answer
53 views
update of iptables without reboot
I have a Linux machine with multiple virtual machines and virtual network. Two Virtual Machines running web services, where VM1 provides my Website and VM2 provides a "Maintenance in Progress&...
- 101
-4 votes
1 answer
266 views
Synology NAS with multiple NICs used as an internal network router [closed]
TLDR: I am trying to use a Synology NAS as an internal network router between my local network (with internet access) and my test network (without internet access). "NAS1" is a Synology ...
- 27
0 votes
0 answers
125 views
ossec agent with static ip, server with dynamic ip does not connects outside the LAN
I have this situation: _one agent inside a LAN with a dhcp internal ip, the router has a static ip _and a server that I use, inside the same LAN with an internal dhcp ip and outside the LAN with ...
- 1
0 votes
0 answers
60 views
Can I run VPN servers with dynamic routing inside an AWS VPC?
I would like to run a redundant road-warrior VPN setup inside an AWS VPC. Ideally, run two instances in two AZs and failover/round-robin between them. However, AWS doesn't support dynamic routing (...
- 3
0 votes
0 answers
88 views
Work around nginx lookup on startup
I'm running a server with a bunch of toggleable containers and networks. I have one gateway routing traffic to all but I find that when any are down nginx doesn't start up. stream { server { ...
- 1
1 vote
0 answers
61 views
iptables NAT-ing multiple clients requesting service to a multicast address; server replies with unicast packets; How to route back to client?
We have an E device that sends a request multicast (239.1.2.3) UDP to port 17225 in network netE. The replier listens to the multicast address request, and replies with unicast UDP to the requester. ...
0 votes
1 answer
62 views
Routing between two chained VPN connections
I'm trying to setup the following network: Host1 ---(VPN1)--- Host2 ---(VPN2)--- Host3 Where Host1 has IP 10.0.0.1/16 on interface tun-vpn1; Host2 has IPs 10.0.0.2/16 on interface tun-vpn1, and 10.1....
- 13
1 vote
0 answers
32 views
First marked packet by iptables doesn't trigger correct routing, but subsequent ones do
I have configured multiple routing tables and iptables rules to manage traffic, but I am facing an issue where the first marked packet is not routed correctly according to the specified table. However,...
- 11
0 votes
0 answers
116 views
Openwrt: Packets silently disappears when routed to VPN
I tried to build setup on OpenWRT with VPN to VPN server in Cloud. OpenWRT works as a WiFi Repeater to the building's WiFi. VPN connection by itself is stable and working fine (confirmed via tcpdump ...
- 31
0 votes
0 answers
57 views
Azure App Service doesn't see route to VPN
I have an App Service that is using private endpoints and private links to connect with an SQL instance in the same Resource Group. I am also trying to set up a IPsec Tunnel/site-to-site VPN ...
- 1
0 votes
2 answers
261 views
Dual IP Source Based Routing on Server
I have struggled in an enterprise environment with IP changes (moving VLANS) of servers. Temporary dual homing would be an ideal solution, but after trying on and off for a year, I have always had ...
- 101
-1 votes
1 answer
84 views
How to access the Internet from physically remote subnet router
We have a physical connection from a provider that connects two of our offices. The connection has two subnets and routing on equipment of that provider. We do not have access to this equipment, and ...
0 votes
0 answers
63 views
Can't query my bind9 dns resolver?
I am running into an issue with setup where one of my remote VM can't query a bind9 DNS that I setup. So here is the setup, I have three Virtual Machines and communicating with each via a WireGuard ...
- 1
0 votes
2 answers
77 views
Why have multiple global IPs?
A DHCP setup. My router reports an uplik different from what ip = requests.get('https://api.ipify.org').text does. Here's an example: $ curl https://api.ipify.org 46.10.148.15 yet the router still ...
- 105
0 votes
1 answer
197 views
How to forward traffic within an Azure subnet
I am testing a scenario where we need to forward all traffic to a VM, then this VM should forward the traffic to the intended machine. (cannot say "why"). Created Vnet "VN", ...
- 109
0 votes
0 answers
132 views
Azure Application Gateway wildcard configuration to multiple backends
I have a bunch of Static Web Apps fronted by an Application Gateway. Each Static Web App is configured to use a Custom Domain (e.g. app1.example.com) which is a subdomain of a wildcard domain listened ...
- 153
0 votes
1 answer
93 views
Routing on double gateway depending on source interface or ip
So I have an internet setup with a BGP router that provides me with my own /24 IPv4 bloc. In order to have those same IPs on a disaster recovery site, I've built a server machine on the disaster site ...
- 281
1 vote
1 answer
138 views
Forwarding breaks when bridge interface is involved
I have a very simple setup that needs to forward traffic from a WireGuard interface (wg0) to hosts connected to a LAN interface (enp0s25). [ other LAN host ] <---> enp0s25 [ server ] wg0 <---&...
- 139
1 vote
0 answers
74 views
Routing issue - packets go to gateway, not out on local network [closed]
Host 192.168.3.235 sends a ping request to host 192.168.3.234 directly to the host on the local subnet. Host 192.168.3.235 sends the replies to the request to the gateway. This seems odd to me. What ...
0 votes
0 answers
76 views
Cannot use OpenVPN client as a gateway to another network
I have two networks, 10.8.0.0/24 and 192.168.1.0/24. I have an OpenVPN server running on Linux with IP 10.8.0.1, and one client with IP 10.8.0.2, that has an interface in the network 192.168.1.0/24. ...
- 1
0 votes
0 answers
88 views
Difference between multicast forwarding cache and multicast routes
I'm trying to understand multicast routing on Linux and have some questions regarding to it: what is the difference between route of type multicast that is usually displayed using ip route command ...
- 141
0 votes
2 answers
324 views
VLAN traffic not passing through managed switch
I upgraded an unmanaged TPLink switch to a managed Linksys LGS328MPC POE switch. Traffic from some wireless clients are tagged by the AP with VLAN 3000. In the diagram, when the unmanaged switch is ...
- 21
1 vote
0 answers
29 views
Setting up unique proxy on each public IP per NIC on AZURE
ENVIRONMENT Azure VM Ubuntu 18 has: 2 NICs. NIC #1: has 2 public IPs. Private IPS: 10.0.0.4, 10.0.0.5 NIC #2: has one public IP. Private IP: 10.0.0.6 OBJECTIVE How do i ultimately create a HTTP ...
- 11
0 votes
0 answers
53 views
Routing via NAT and VPN
I think I'm close, but not sure how to debug further. My setup is like this: 10.241.1.11 --- (LAN) --- 10.241.1.9/10.8.0.2 --- (VPN) --- 10.8.0.1 I want to be able to connect to 10.8.0.1 from 10.241....
- 101
0 votes
0 answers
119 views
Traffic forwarding works on TCP but fails on UDP
I wanted to expose an IPcam to Internet using WireGuard tunnel, diagram looks like this: Client --—> ServerA -—-(wireguard)---> ServerB ---(LAN)--—> Cam I've set proper DNAT and SNAT rules; ...
- 115
0 votes
0 answers
263 views
How can I have clients route to advertised Tailscale subnets first instead of the local network?
I have a Tailscale network. One of the devices advertises a subnet router for 10.1.2.0/24, therefore allowing me to remotely access parts of my network that don't have, and are not compatible with, ...
- 109
0 votes
1 answer
192 views
How do I keep priority on my rule?
I have the following code run on my server to allow me to SSH into my server even when the server is connected to a VPN. The code below runs as a service after startup. ip addr add 192.168.1.113 dev ...
1 vote
2 answers
217 views
Dual WANs on pfsense - default gateway and policy routing
I am configuring a pfSense system with two WANs and have the following requirements: WAN1: This is the primary default gateway and should handle all general internet traffic. WAN2: This is used for ...
- 11
2 votes
1 answer
320 views
Some details of the route matching algorithm
To find a matched entry in the route table, a bitwise AND will be applied to the destination IP and the netmask in the route table. I wonder if the bitwise AND will ALSO be applied to the "...
- 151
0 votes
2 answers
380 views
How to access my public server (setup via nginx proxy) through it's public domain but as a LAN connection?
When I am on my local network (subnet?), I would like to go to sub1.myserver.com and for it to work the same as going to 192.168.1.99:1234 - i.e. the goal would be to use the same domain name I also ...
- 103
0 votes
2 answers
335 views
How to connect to MariaDB Server via OpenVPN
My problem is probably super trivial, but I'm really completely new to these topics. I have a virtual server (Ubuntu 24.04, Plesk) with a fixed IP (123.123.123.123 in the example) with my provider ...
0 votes
0 answers
44 views
custom route in local network between two routers subnet with shared VPN
Setup described on image Miro: network setup. I use second router for one VPN on multiple childs. Connection created in Windows, because of multiple different VPNs (OpenVPN, Outline, WireGuard etc.) ...
- 1
0 votes
1 answer
85 views
VPN & changing outbound interface per user - correct source IP but wrong interface
I am connected through a VPN and I want some user accounts to bypass it. VPN interface is tap0 (IP is 172.16.x.x), the main one is wlan0 (IP is 192.168.10.3). All regular traffic goes to the Internet ...
- 431
0 votes
0 answers
57 views
ipmitool packets going out over unexpected NIC on bridged interface
After changing subnets for a lan/wan connected NIC (connection 1), the ipmitool over our management network (connection 2) fails to work. It is setup on a different interface whose configuration hasn'...
- 9
1 vote
0 answers
146 views
Fedora Linux VM on Windows 10 HyperV host behind a network proxy cannot access internet
I'm setting up a Fedora VM using HyperV on a Windows 10 machine. I've got it installed, the VM boots up just fine but I am not able to connect to the internet from the VM via the host computer. Here's ...
- 121
0 votes
2 answers
430 views
How do I compare two variables in an NGNIX conf file using the if statement or some other way?
I have a variable say $foo and I need to do a case-insensitive match against a given pattern, but that pattern is also a variable received via a header. If that is true then I set a given variable to ...
