[KLUG Members] routing question

[Adam Williams]

>I am running RedHat 7.1 on a firewall server and using
>masqurading between the Internet and the internal
>network (a computer lab).  It is working fine to the
>main network in the lab.  The lab is broken into
>multiple subnets through cisco routers.  I have been
>able to get the Internet access to the other subnets
>using Squid.  I cannot get the routing so that the
>other subnets can get out to the Internet though.  I
>think I need to use gated so that the Linux box will
>talk with the Cisco routers but am not sure.  Any
>ideas??

Assumption: Your internal subnets are privately numbered, as in 
192.168.x.x or 10.x.x.x or whatever that other one is.

Assumption: You are using OSPF for a routing protocol and not some 
diseased proprietary protocol.

Log into a Cisco router and add

ip route 0.0.0.0 0.0.0.0 {firewall ip}

to the global config and

redistribute static metric {some appropriate value, say 3}

to the router ospf stanza.

Now all the routers know where the default gateway is.

Install "zebra" on the firewall,  I think it comes with RH7.x

Define the hostname in /etc/zebra.conf

hostname monkeybutloving-thesequal

Define your OSPF params in /etc/ospfd.conf

hostname monkeybutloving-thesequal
router ospf
network {your network}/{your mask} area {your area, probably 0}

Start the routing daemons

/etc/rc.d/init.d/zebra start
/etc/rc.d/init.d/ospfd start

You probably want to use chkconfig to make them start every time.

Be careful with logging information from zebra,  it can make ALOT.

I suppose you could publish the default route into OSPF from the firewalls 
ospfd but I prefer to let routers handle routing,  and let hosts recieve 
routing information but not publish it.  It's just an intellectual hangup 
I have; specialization, division of labor, all that...

-- 
-----------------------------------------------------------
Ximian GNOME, Evolution, LTSP, and RedHat Linux + LVM & XFS
-----------------------------------------------------------