E-mails for HW alerts
To get the Sun ILOM HW e-mail alerts we had to point each ILOM service vs the PSI e-mail GW 192.33.120.33 = psquad.psi.ch and the mailing list
cms-tier3@lists.psi.ch;
So I did that but because:
- The local subnet 192.168.2.21/24 where the ILOM services are hosted can't reach directly the mail GW 192.33.120.33
- That subnet it's connected to the node t3admin01 and that can reach 192.33.120.33
- The local ip of t3admin01 = 192.168.2.21 is the network GW for the ILOM services
eventually I simply wrote an iptables NAT configuration on t3admin01 to forward the subnet connections to the PSI net, so basically t3admin01 is now a router for 192.168.2.21/24.
The following iptables file shows the configuration, remember also to enable in the kernel the IP forwarding parameter 'net.ipv4.ip_forward = 1' ;
[root@t3admin01 ~]# cat /etc/sysconfig/iptables
# Generated by iptables-save v1.3.5 on Wed Apr 28 15:15:26 2010
*filter
:INPUT ACCEPT [15107:2544950]
:FORWARD ACCEPT [0:0]
:OUTPUT ACCEPT [19637:5254231]
-A INPUT -s 127.0.0.1 -j ACCEPT
-A INPUT -m state --state RELATED,ESTABLISHED -j ACCEPT
# ldap without SSL
-A INPUT -p tcp -m tcp --dport 389 -j REJECT --reject-with icmp-port-unreachable
-A FORWARD -m state --state RELATED,ESTABLISHED -j ACCEPT
COMMIT
# Completed on Wed Apr 28 15:15:26 2010
# by martinelli 15-02-2011 - to get e-mail HW alerts
*nat
:PREROUTING ACCEPT [0:0]
:POSTROUTING ACCEPT [0:0]
:OUTPUT ACCEPT [0:0]
-A POSTROUTING -s rmwn02 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn03 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn04 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn08 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn10 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn11 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn12 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn13 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn14 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn15 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn16 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn17 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn18 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn19 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn20 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn21 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn22 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn23 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn24 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn25 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn26 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn27 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn28 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmwn29 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmblade01 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmblade02 -o eth0 -j SNAT --to-source 192.33.123.21
#-A POSTROUTING -s rmadmin01 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmce01 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmui01 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmse01 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmdcachedb01 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmnfs01 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmui02 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmui03 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmui04 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmvmmaster01 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs01 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs02 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs03 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs04 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs05 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs06 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs07 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs08 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs09 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs10 -o eth0 -j SNAT --to-source 192.33.123.21
-A POSTROUTING -s rmfs11 -o eth0 -j SNAT --to-source 192.33.123.21
COMMIT
[root@t3admin01 ~]#
--
FabioMartinelli - 2011-02-15