OpenSuse 13.1 as router with 2 ethernet ports

Hi,

i am new to Suse and i have bought a new PC with OpenSuse 13.1 in it, system consists of 1 onboard Ethernet port(100.0.0.35 input from internet) and other D-Link Addon Eth Card(100.100.0.1 output to users so that they can use this port as Default Gateway), Now i want to setup this PC as router so that i can filter out the unnecessary usage of internet.

This is what i want to achieve,

http://s32.postimg.org/6j0pog4p1/Open_Suse_Firewall.jpg
Here’s what i have tried till now,

enp1s0 (OnBoard Eth) Settings in NetworkManager
IP : 100.0.0.35
netmask: 255.0.0.0
Gateway: 100.0.0.1

enp5s0 (D-Link Eth Card) Settings in NetworkManager
IP: 100.100.0.1
netmask: 255.0.0.0
Gateway: 100.0.0.1

Yast Settings -> Network Settings:
Disabled ipV6 in Global options
Routing Gateway: 100.0.0.1, Device: enp1s0
same ip settings for both thh ethernet ports as mentioned above

Enabled the ip_forward in /etc/sysctl.conf
net.ipv4.ip_forward = 1
sysctl -p

and done this as well
echo 1 > /proc/sys/net/ipv4/ip_forward
route add -net 100.0.0.35/255.0.0.0 gw 100.0.0.1
iptables -t -nat -A POSTROUTING -s 100.0.0.35/255.0.0.0 -j MASQUERADE
iptables-save > /etc/sysconfig/iptables-net
iptables-restore < /etc/sysconfig/iptables-net

Sentinel:~ # netstat -rn
Kernel IP routing table
Destination Gateway Genmask Flags MSS Window irtt Iface
0.0.0.0 100.0.0.1 0.0.0.0 UG 0 0 0 enp1s0
0.0.0.0 0.0.0.0 0.0.0.0 U 0 0 0 enp5s0
100.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 enp1s0
127.0.0.0 0.0.0.0 255.0.0.0 U 0 0 0 lo
169.254.0.0 0.0.0.0 255.255.0.0 U 0 0 0 enp5s0

as per google search results after setting up all the above settings i should get Internet in User PC’s as in Image, but i am not able to get the internet.

UserPC’s can ping to 100.100.0.1, 100.0.0.35 and even opensuse can ping to UserPC’s.

FYI: OpenSuse account is running as ROOT.

Any suggestions will help me to resolve the issues.

That won’t work. Both interfaces are on the same subnet. You need to assign addresses from different subnet to each. Either use more narrow mask (e.g. 255.255.0.0) on both interfaces or completely different subnet (like 192.168.1.0/24) on one interface. Of course, this should match network settings of other devices on the same subnet (or, better, you need to change settings of other devices to match it).

For what? For the ping? That is not needed and thus wrong.