Hi,
I`ve installed FC3 on a machine with 3 network cards.
There are three subnets
192.168.100.0/24
192.168.200.0/24
192.168.178.0/24
The routers IP in every subnet is the 192.168.xxx.252
In the subnet 192..168.178.0 is a internet gw with the ip 192.168.178.1
I´ve set up a dhcpd on the router. Every machine recives a IP from the server and can reache the subnet gw.
It is possible from the router to reach every host in every subnet (including internet hosts)
But the machine did not route a bit from one to another subnet!
I`ve set all iptables policys to accept.
cat /proc/sys/net/ipv4/ip_forward
returns a 1
I disabled ipv6 but nothing helps.
If I setup masq for one of the subnet the subnet is reachable from the others. But I don't want masq. Pure nice IP routing...
I don't get it.
Please help me to find a way to debug this mess!

Thanks,

Roi Danton

But, do the routing tables of the other machines on these subnets see this machine as a gateway? If the machines
on each subnet are to route between each other through this machine, their routing tables must show this host either
as the default route or have specific subnet routes through this machine. As an example, say you have the machine
192.168.100.123 that you want to have this machine route to 192.168.200.123 then on the first host, there must be a
route something like:

route add -net 192.168.200.0 netmask 255.255.255.0 gw 192.168.100.252 eth0

and for the second host:

route add -net 192.168.100.0 netmask 255.255.255.0 gw 192.168.200.252 eth0

Both routes must be in place for message/reply things to work.

Have a look at http://howtos.linux.com/guides/nag2/x-087-2-issues.routing.shtml for
more info.

Hope this helps...

First check that each client machine on each subnet has a correct IP and GW address. The gateway address must be the one in the respective subnet.

Next, make sure you can ping client machines from the router/server.

Final check is to run iptraf on the server/router and begin pinging clients from clients jumping through the router. Watch the incoming and outgoing traffic with iptraf and see where the packets are getting dropped on the floor.

What you are attempting to do is really quite easy, the problem is usually in the details--one IP goof and all bets are off.

Another thing you may want to do is post your router's routing table with ip route or route -n.

Thank you for your help.
I installed many router configurations... so I know how to configure a subnet.
But it’s my first fc3 router... and I'm wondering if there exists a special security setting or something like that with is blocking my attempt.

Back to my problem. (I'm sorry I haven’t the routing table right here, so I can't post it)
I'm sure all hosts in each subnet has the router as its default gateway. Also the Internet gw has two static routes to every subnet behind the router. I'm able to ping from a machine in the subnet 192.168.100.0/24 the routers ip in the other subnets e.g. 192.168.200.252 or 192.168.178.252 but no other host in the subnet. iptraf shows every incoming packet with correct source and destination but it never reaches the destination.
I think it could a hardware problem... The router was running 1 year with rh9 in this configuration and there was never a problem. But after installing fc3, I recognise that sometimes during boot up kudzu tells me that one card is missing. I told kudzu to keep the configuration but after that kudzu found exactly the same card he missed before. It does this not every boot up but sometimes... strange.
It´s a Compaq Netelligent Dual 10/100 (tlan): I'd never problems with these cards.

Maybe it’s a kernel parameter missing?
I’d problems to activate the ip_conntrack.
insmod ip_conntrack fails. I'd found another way to activate it but I can't remember how :)

Is there something else necessary to activate with cause my problems??