Omv: two interfaces as gateway.

    My office moved the file server to OpenMediaVault: I found it very clear and responsive.
    I would like to configure two interfaces, so that I can make the server acting as gateway for all the clients inside the office.

    This is my configuration:

    eth0 : external
    dns (from isp)

    eth1 : internal
    dns (from isp)


    Is it possible to configure ip fowarding to reach internet from internal network?

    will /etc/sysctl.conf be overwritten during updates?

    Why should this solution be weaker than a network where the server and clients are on an equal level, just behind the router?
    You mean a dual-nic to directly forward the traffic for the internal network?


    i'll not make a complete documentation over network security at all - sry, no time for that ;).

    Just take my complains and check what is more important for you: simpliness or security.
    - Best construct for security is a dedicated Dual-NIC in a vm-environment (kvm preferred).
    - The easiest way for your issue, is to split the NIC into logical units - making at least an eth0.1 device, which transports the traffic upstream. Then you have only to NAT (or technically correct PAT) your office lan via iptables to the upstream-interface. (in this case you don't need a second NIC, but you can of course upgrade my suggestion with that :D).

  • Easy solution at commandline:

    sysctl -w net.ipv4.ip_forward=1

    Permanent - edit /etc/sysctl.conf.

    I would like to make this setting via switch within webif, but don't know about the level of risk manegement.


