Trouble is, I have a number of VLANs, some of which must have link to Internet and a specific network (corporate resources).
In theory, there must be 3 VLANs - 1st with access to Internet, 2nd - Corporate Network, 3rd - both of them (default Internet and some corporate resources). Internet is provided from NIC1, Corporate Network - NIC2. NIC3 used for local network.
Here are some examples: DHCP and VLAN interface config example.
Code: Select all
# Internet
subnet 1.1.11.0 netmask 255.255.255.0 {
allow client-updates;
option domain-name-servers 1.1.11.11;
}
# Corporate
subnet 1.1.12.0 netmask 255.255.255.0 {
allow client-updates;
option domain-name-servers 1.1.12.12;
}
# Hybrid
subnet 1.1.13.0 netmask 255.255.255.0 {
allow client-updates;
option domain-name-servers 1.1.13.13;
}
Code: Select all
VLAN_ID=11
GATEWAY=1.1.11.11
BROWSER_ONLY=no
PHYSDEV=eth0
BROADCAST=1.1.11.255
VLAN=yes
NAME=Internet
BOOTPROTO=none
TYPE=Vlan
IPV6_FAILURE_FATAL=no
DEVICE=eth0.11
NETMASK=255.255.255.0
DEFROUTE=no
IPADDR=1.1.11.10
NETWORK=1.1.11.0
ONBOOT=yes
How should i route it, especially Hybrid connection?
Should I create NAT for Hybrid network on both outbound interfaces?
Yeah, know smthg about policy-routing, but I think, I'm missing something in it.
netstat -rn OUTPUT
0.0.0.0 <ISP GW ADDR> 0.0.0.0 UG 0 0 0 eth0
0.0.0.0 <Corporate GW> 0.0.0.0 UG 0 0 0 eth1
<ISP WG Net> 0.0.0.0 255.255.255.192 U 0 0 0 eht0
<Corpotate GW Net> 0.0.0.0 255.255.255.0 U 0 0 0 eth1
1.1.11.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2.11
1.1.12.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2.12
1.1.13.0 0.0.0.0 255.255.255.0 U 0 0 0 eth2.13