On Mon, 2003-10-06 at 16:42, Anton wrote:
> hi
> Thanks for the advice. I now no longer have to change the default route
> in the gateway (linux) routing table. Unfortunately, after trying
> everything I could possibly think of, there is still nothing that makes
> the ME machine able to connect to the net unless I run drakgw. I did
> pretty much everything you said (Jack) but to no avail...
> I didn't set a GATEWAY in
>
> /etc/sysconfig/network
>
>
> because the ip that my dialup connects to switches between 202.0.46.81
> and 83
>
> and it seemed happier with
> policy:
> masq net ACCEPT
> loc net ACCEPT
what network is your loc zone defined as?
> fw net ACCEPT
> net all DROP info
> all all REJECT info
> #LAST LINE -- ADD YOUR ENTRIES ABOVE THIS LINE -- DO NOT REMOVE
>
> than
>
> policy:
> #SOURCE DEST POLICY LOG LEVEL
> LIMIT:BURST
> masq net ACCEPT
> fw masq ACCEPT
> fw net ACCEPT
> net all DROP info
> all all REJECT info
>
>
> The thing is thatit still connects fine after I run drakgw. I tried to
> have a look at the log messages and see what drakgw was doing that I was
> not - I'm just not that clued up yet - sorry.
strace drakgw | grep etc might tell you.
> Also, manually starting and stopping dhcpd doesn't seem to work
> sometimes, particularly when I disable drakgw. It takes quite a lot of
> fiddling to get it on at all and then it doesn't do anything. Sorry if I
> sound a little fresh, but I'm still learning about all this stuff!
> Below is most of the last part of my log messages. Directly before this
> is just a whole screed of modprobe entries.
> Can't really work out what do try next. I would hazard a guess that
> there is some service that drakgw is starting that is not started
> automatically on startup. DHCPD is not started on startup either. It is
> set to (in drakXServices) but doesn't. No idea why - there seem to be
> quite a few services checked to be started which aren't running... still
> lost
> Cheers
> Anton
>
> Oct 6 23:13:05 machine modprobe: modprobe: Can't locate module tr0
> Oct 6 23:13:05 machine modprobe: modprobe: Can't locate module tr1
> Oct 6 23:13:05 machine modprobe: modprobe: Can't locate module tr2
> Oct 6 23:13:05 machine modprobe: modprobe: Can't locate module tr3
> Oct 6 23:13:05 machine modprobe: modprobe: Can't locate module fddi0
> Oct 6 23:13:05 machine modprobe: modprobe: Can't locate module fddi1
> Oct 6 23:13:05 machine modprobe: modprobe: Can't locate module fddi2
> Oct 6 23:13:05 machine modprobe: modprobe: Can't locate module fddi3
okay, that's kinda weird -- it's trying to load tokenring and FDDI
support modules.
> Oct 6 23:13:05 machine drakgw[3199]: [drakgw] Have network card: eth0
> Oct 6 23:13:05 machine drakgw[3199]: [drakgw] Available network cards: eth0
> Oct 6 23:13:06 machine drakgw[3199]: Choosing network device: eth0
> Oct 6 23:13:09 machine drakgw[3199]: Using LAN address <192.168.0>
> Oct 6 23:13:09 machine drakgw[3199]: launched command: modprobe iptable_nat
> Oct 6 23:13:10 machine drakgw[3199]: Reconfiguring network parameters
> of eth0
> Oct 6 23:13:10 machine drakgw[3199]: running: chkconfig --add shorewall
> Oct 6 23:13:10 machine drakgw[3199]: running: service > /dev/null
> shorewall restart
> Oct 6 23:13:11 machine logger: Shorewall Restarted
> Oct 6 23:13:11 machine drakgw[3199]: Configuring a DHCP server on
> 192.168.0.0
> Oct 6 23:13:11 machine drakgw[3199]: launched command:
> /usr/sbin/update_dhcp.pl
> Oct 6 23:13:11 machine drakgw[3199]: Updating CUPS configuration
> accordingly
> Oct 6 23:13:11 machine drakgw[3199]: Starting daemons
> Oct 6 23:13:11 machine drakgw[3199]: launched command:
> /etc/rc.d/init.d/cups status >/dev/null
> Oct 6 23:13:11 machine drakgw[3199]: launched command:
> /etc/rc.d/init.d/dhcpd status >/dev/null
> Oct 6 23:13:11 machine drakgw[3199]: launched command:
> /etc/rc.d/init.d/dhcpd stop
> Oct 6 23:13:11 machine dhcpd: dhcpd shutdown succeeded
> Oct 6 23:13:11 machine drakgw[3199]: launched command:
> /etc/rc.d/init.d/named status >/dev/null 2>/dev/null
> Oct 6 23:13:11 machine drakgw[3199]: launched command:
> /etc/rc.d/init.d/named stop
> Oct 6 23:13:11 machine named[1878]: shutting down
> Oct 6 23:13:11 machine named[1878]: stopping command channel on
> 127.0.0.1#953
> Oct 6 23:13:11 machine named[1878]: no longer listening on 127.0.0.1#53
> Oct 6 23:13:11 machine named[1870]: exiting
> Oct 6 23:13:11 machine named: named shutdown succeeded
okay, drakgw shuts everything down when you tell it to commit changes.
> Oct 6 23:13:11 machine drakgw[3199]: launched command:
> /etc/sysconfig/network-scripts/net_cnx_down >/dev/null
> Oct 6 23:13:12 machine network: Shutting down interface eth0: succeeded
> Oct 6 23:13:12 machine network: Shutting down interface ppp0: succeeded
> Oct 6 23:13:12 machine ifplugd[836]: Executing
> '/etc/ifplugd/ifplugd.action eth0 down'.
> Oct 6 23:13:12 machine ifplugd[836]: Program executed successfully.
> Oct 6 23:13:12 machine ifplugd[836]: Exit.
> Oct 6 23:13:12 machine network: Shutting down loopback interface:
> succeeded
> Oct 6 23:13:12 machine network: Disabling IPv4 packet forwarding:
> succeeded
> Oct 6 23:13:12 machine drakgw[3199]: launched command:
> /etc/rc.d/init.d/network restart >/dev/null
> Oct 6 23:13:12 machine network: Shutting down interface ppp0: succeeded
> Oct 6 23:13:13 machine network: Shutting down loopback interface:
> succeeded
> Oct 6 23:13:13 machine network: Setting network parameters: succeeded
> Oct 6 23:13:13 machine network: Bringing up loopback interface: succeeded
> Oct 6 23:13:13 machine network: Enabling IPv4 packet forwarding succeeded
> Oct 6 23:13:13 machine ifplugd[4284]: Warning: Could not get interface
> address.
I don't suppose eth0 is configured to use a DHCP address instead of a
static address? Or maybe this is referring to ppp0. Did it dial up your
provider? Does /sbin/ip addr show IP addresses for both interfaces?
> Oct 6 23:13:13 machine kernel: eth0: Setting 100mbps full-duplex based
> on auto-negotiated partner ability 41e1.
> Oct 6 23:13:13 machine ifplugd[4284]: Using interface
> eth0/00:05:1C:19:CF:12 with driver 8139too 0.9.26
> Oct 6 23:13:13 machine ifplugd[4284]: ifplugd 0.13 successfully
> initialized, link beat detected.
> Oct 6 23:13:13 machine ifplugd[4284]: Executing
> '/etc/ifplugd/ifplugd.action eth0 up'.
> Oct 6 23:13:15 machine ifplugd[4284]: Program executed successfully.
> Oct 6 23:13:15 machine network: Bringing up interface eth0: succeeded
> Oct 6 23:13:15 machine drakgw[3199]: launched command:
> /etc/sysconfig/network-scripts/net_cnx_up >/dev/null
> Oct 6 23:13:15 machine network: Shutting down interface eth0: succeeded
> Oct 6 23:13:15 machine network: Shutting down interface ppp0: succeeded
> Oct 6 23:13:15 machine ifplugd[4284]: Executing
> '/etc/ifplugd/ifplugd.action eth0 down'.
> Oct 6 23:13:16 machine ifplugd[4284]: Program executed successfully.
> Oct 6 23:13:16 machine ifplugd[4284]: Exit.
> Oct 6 23:13:16 machine network: Shutting down loopback interface:
> succeeded
> Oct 6 23:13:16 machine network: Disabling IPv4 packet forwarding:
> succeeded
> Oct 6 23:13:16 machine network: Setting network parameters: succeeded
> Oct 6 23:13:16 machine network: Bringing up loopback interface: succeeded
> Oct 6 23:13:16 machine network: Enabling IPv4 packet forwarding succeeded
> Oct 6 23:13:16 machine ifplugd[4689]: Warning: Could not get interface
> address.
> Oct 6 23:13:16 machine kernel: eth0: Setting 100mbps full-duplex based
> on auto-negotiated partner ability 41e1.
> Oct 6 23:13:16 machine ifplugd[4689]: Using interface
> eth0/00:05:1C:19:CF:12 with driver 8139too 0.9.26
> Oct 6 23:13:16 machine ifplugd[4689]: ifplugd 0.13 successfully
> initialized, link beat detected.
> Oct 6 23:13:16 machine ifplugd[4689]: Executing
> '/etc/ifplugd/ifplugd.action eth0 up'.
> Oct 6 23:13:18 machine ifplugd[4689]: Program executed successfully.
then it tries to restart the interfaces a few times.
> Oct 6 23:13:18 machine network: Bringing up interface eth0: succeeded
> Oct 6 23:13:18 machine drakgw[3199]: launched command:
> /etc/init.d/shorewall restart >/dev/null
> Oct 6 23:13:19 machine logger: Shorewall Restarted
> Oct 6 23:13:19 machine drakgw[3199]: launched command:
> /etc/rc.d/init.d/named start >/dev/null
> Oct 6 23:13:19 machine named[5269]: starting BIND 9.2.2 -u named
> Oct 6 23:13:19 machine named[5269]: using 1 CPU
> Oct 6 23:13:19 machine named[5271]: loading configuration from
> '/etc/named.conf'
> Oct 6 23:13:19 machine named[5271]: no IPv6 interfaces found
> Oct 6 23:13:19 machine named[5271]: listening on IPv4 interface lo,
> 127.0.0.1#53
> Oct 6 23:13:19 machine named[5271]: listening on IPv4 interface eth0,
> 192.168.0.1#53
> Oct 6 23:13:19 machine named[5271]: listening on IPv4 interface ppp0,
> 210.246.27.124#53
ah yes, addressing is configured right because BIND would have had a fit
otherwise.
> Oct 6 23:13:19 machine named[5271]: command channel listening on
> 127.0.0.1#953
> Oct 6 23:13:19 machine named[5271]: zone 0.0.127.in-addr.arpa/IN:
> loaded serial 1997022700
> Oct 6 23:13:19 machine named[5271]: running
> Oct 6 23:13:19 machine named: named startup succeeded
> Oct 6 23:13:19 machine drakgw[3199]: launched command: /sbin/chkconfig
> --level 345 named on
> Oct 6 23:13:19 machine drakgw[3199]: launched command:
> /etc/rc.d/init.d/dhcpd start >/dev/null
> Oct 6 23:13:19 machine dhcpd: Wrote 1 leases to leases file.
> Oct 6 23:13:19 machine dhcpd: dhcpd startup succeeded
> Oct 6 23:13:19 machine drakgw[3199]: launched command: /sbin/chkconfig
> --level 345 dhcpd on
> Oct 6 23:13:19 machine drakgw[3199]: launched command:
> /etc/rc.d/init.d/shorewall start >/dev/null
> Oct 6 23:13:19 machine drakgw[3199]: launched command: /sbin/chkconfig
> --level 345 shorewall on
> Oct 6 23:13:25 machine drakgw[3199]: [drakgw] Installation complete,
> exiting
> Oct 6 23:13:56 machine dhcpd: DHCPREQUEST for 192.168.0.163 from
> 00:80:ad:76:dd:30 (OEMComputer) via eth0
> Oct 6 23:13:56 machine dhcpd: DHCPACK on 192.168.0.163 to
> 00:80:ad:76:dd:30 (OEMComputer) via eth0
Here's WinME getting its address successfully.
> Oct 6 23:14:03 machine kernel: Shorewall:net2all:DROP:IN=ppp0 OUT= MAC=
> SRC=210.246.20.126 DST=210.246.27.124 LEN=92 TOS=0x00 PREC=0x00 TTL=123
> ID=5934 PROTO=ICMP TYPE=8 CODE=0 ID=512 SEQ=24859
> Oct 6 23:14:27 machine kernel: Shorewall:net2all:DROP:IN=ppp0 OUT= MAC=
> SRC=210.246.8.64 DST=210.246.27.124 LEN=92 TOS=0x00 PREC=0x00 TTL=123
> ID=58375 PROTO=ICMP TYPE=8 CODE=0 ID=768 SEQ=24859
> Oct 6 23:14:56 machine kernel: Shorewall:net2all:DROP:IN=ppp0 OUT= MAC=
> SRC=210.246.0.50 DST=210.246.27.124 LEN=92 TOS=0x00 PREC=0x00 TTL=124
> ID=23260 PROTO=ICMP TYPE=8 CODE=0 ID=768 SEQ=24859
> Oct 6 23:15:05 machine kernel: Shorewall:net2all:DROP:IN=ppp0 OUT= MAC=
> SRC=210.246.16.225 DST=210.246.27.124 LEN=92 TOS=0x00 PREC=0x00 TTL=123
> ID=8121 PROTO=ICMP TYPE=8 CODE=0 ID=768 SEQ=24859
> Oct 6 23:15:13 machine kernel: Shorewall:net2all:DROP:IN=ppp0 OUT= MAC=
> SRC=210.246.16.174 DST=210.246.27.124 LEN=92 TOS=0x00 PREC=0x00 TTL=123
> ID=23319 PROTO=ICMP TYPE=8 CODE=0 ID=768 SEQ=24859
> Oct 6 23:15:30 machine kernel: Shorewall:net2all:DROP:IN=ppp0 OUT= MAC=
> SRC=210.246.27.144 DST=210.246.27.124 LEN=92 TOS=0x00 PREC=0x00 TTL=127
> ID=25900 PROTO=ICMP TYPE=8 CODE=0 ID=512 SEQ=25115
It then drops some ICMP traffic from the Internet (no big deal).
> Oct 6 23:15:47 machine automount[2033]: attempting to mount entry
> /misc/.directory
> Oct 6 23:15:47 machine automount[5383]: lookup(file): lookup for
> .directory failed
> Oct 6 23:15:47 machine automount[2035]: attempting to mount entry
> /net/.directory
> Oct 6 23:15:47 machine automount[5384]: >> showmount: can't get address
> for .directory
> Oct 6 23:15:47 machine automount[5384]: lookup(program): lookup for
> .directory failed
> Oct 6 23:16:05 machine kernel: Shorewall:net2all:DROP:IN=ppp0 OUT= MAC=
> SRC=210.246.6.234 DST=210.246.27.124 LEN=92 TOS=0x00 PREC=0x00 TTL=124
> ID=64869 PROTO=ICMP TYPE=8 CODE=0 ID=512 SEQ=46092
>
> >
> >
> >>default back to my home net interface (ethernet). What is going on here?
something's trying to be smart :-(
[EMAIL PROTECTED] root]# grep -r eth0 /etc/sysconfig/
/etc/sysconfig/network-scripts/ifup-aliases:# Specify multiple ranges
using multiple files, such as ifcfg-eth0-range0 and
/etc/sysconfig/network-scripts/ifup-aliases:# ifcfg-eth0-range1, etc. In
these files, the following configuration variables
/etc/sysconfig/network-scripts/ifup-aliases:# The above example values
create the interfaces eth0:0 through eth0:253 using
/etc/sysconfig/network-scripts/ifup-ipv6:# Example:
IPV6TO4_ROUTING="eth0-:f101::0/64 eth1-:f102::0/64"
/etc/sysconfig/network-scripts/ifcfg-eth0:DEVICE=eth0
/etc/sysconfig/network-scripts/drakconnect_conf.default:InternetInterface=eth0
/etc/sysconfig/network:GATEWAYDEV=eth0
/etc/sysconfig/drakconnect.netc:GATEWAYDEV=eth0
bingo. Edit /etc/sysconfig/network & /etc/sysconfig/drakconnect.netc and
set GATEWAYDEV to ppp0.
> >>
> >>
> >
> >The GUI tools for doing this stuff are trying hard, but they're still
> >lacking. As root, go to /etc/shorewall and start editing files.
> >
> >interfaces:
> >#ZONE INTERFACE BROADCAST OPTIONS
> >net ppp0 detect
> >masq eth0 detect
> >
> >masq:
> >#INTERFACE SUBNET ADDRESS
> >eth0 192.168.1.0/255.255.255.0
> >
> >policy:
> >#SOURCE DEST POLICY LOG LEVEL
> >LIMIT:BURST
> >masq net ACCEPT
> >fw masq ACCEPT
> >fw net ACCEPT
> >net all DROP info
> >all all REJECT info
> >
> >zones:
> >#ZONE DISPLAY COMMENTS
> >net Net Internet zone
> >masq Masquerade Masquerade Local
> >
> >rules:
> >any exceptions to the policy. Leave it alone for now unless you want to
> >serve stuff to the Internet.
> >
> >/etc/sysconfig/network
> >NETWORKING=yes
> >HOSTNAME=machine.whatever.tld
> >DOMAINNAME=whatever.tld
> >GATEWAY=isp.gw.ip.address
> >GATEWAYDEV=ppp0
> >FORWARD_IPV4=true
> >
> >service network restart
> >service shorewall restart
> >
> >
> >
> >>Also simply booting up the ME machine resets the default route to the
> >>address of the local subnet interface! (even though it be on the dialup
> >>after connecting to the net)
> >>
> >>
> >
> >that's right. ME should send Internet-bound traffic to the Mandrake
> >box's inside interface; Linux will then route it onward.
> >
> >
> >
> >>Another issue is that the dhcp doesn't seem to be working. I originally
> >>set up a network with XP (which I also have on the mdk9.1 box) and used
> >>a disk created by the xp wizard to get it going. Somehow ME always
> >>manages to set the IP address to 192.168.0.163, and the gateway to
> >>192.168.0.1 - what it originally had for the xp network. Mdk9.1 seems to
> >>want to have a subnet starting with 192.168.1.1 but ME isn't listening
> >>to the dhcp (which I guess should be running, as it seems as if that is
> >>what it says it is doing) and just sets itself to 192.168.0.163. If I
> >>
> >>
> >
> >/etc/sysconfig/dhcpd
> >INTERFACES="eth0"
> >
> >/etc/dhcpd.conf
> >ddns-update-style none;
> >subnet 192.168.1.0 netmask 255.255.255.0 {
> > # default gateway
> > option routers 192.168.1.1;
> > option subnet-mask 255.255.255.0;
> > option domain-name "whatever.tld";
> > option domain-name-servers 192.168.1.1;
> > range dynamic-bootp 192.168.1.100 192.168.1.253;
> > default-lease-time 21600;
> > max-lease-time 43200;
> > # I want my laptop to appear at a fixed address
> > host othermachine {
> > next-server othermachine.whatever.tld;
> > hardware ethernet the:mac:address:in:hex;
> > fixed-address 192.168.1.x;
> > }
> >}
> >
> >chkconfig dhcpd on
> >service dhcpd start
> >
> >
> >
> >>set the mdk9.1 to statically come out with 192.168.0.1 then, as long as
> >>I rerun the config tool, keeping the IP addresses the same for dns and
> >>others then after I reset the default I can access the net with both
> >>machines. This is an enormous amount of hassle and I'm sure there is
> >>something silly I'm not doing. Any suggestions?
> >>Cheers
> >>Anton
> >>
> >>
> >>
> >>______________________________________________________________________
> >>Want to buy your Pack or Services from MandrakeSoft?
> >>Go to http://www.mandrakestore.com
> >>
> >>
> >>------------------------------------------------------------------------
> >>
> >>Want to buy your Pack or Services from MandrakeSoft?
> >>Go to http://www.mandrakestore.com
> >>
> >>
>
>
>
>
> ______________________________________________________________________
> Want to buy your Pack or Services from MandrakeSoft?
> Go to http://www.mandrakestore.com
--
Jack Coates
Monkeynoodle: A Scientific Venture...
Want to buy your Pack or Services from MandrakeSoft?
Go to http://www.mandrakestore.com
