Hi Taras,
I will try to be somekind graphic with the firewall rules: Does your router
know how to reach one of the vlans in one of your remote installations, for
example, in England? Of course no! You will need rules in your firewall
that redirect some ports from one VLAN to the other, not just having
forwarding bit activated on ubuntu's kernel!
There are several ways of doing this. One of them is marking packets with
mangle rules on firewall. I do that with one of my firewalls to re-direct
output bandwidth on VoIP server through one of our internet PPPoE providers.
Another solution is forwarding PXE ports and NFS ports in firewall from
clients VLAN to server VLAN, but I think you will have troubles this way,
because PXE discover protocol uses MAC-level broadcasting, so I think that
ip forwarding won't be enough...
Hope this helps,
Miguel
2013/9/4 Taras Tomkiv <ttom...@westernpaper.com>
> Yes I am sure, there is absolutely no restrictions and clients can reach
> server.****
>
> ** **
>
> What do you mean by rules in iptables? Firewall is turned of on Ubuntu
> server.****
>
> ** **
>
> I do need VLANs, because client VLAN should have only access to
> Openthinclient server and nothing else.****
>
> ** **
>
> I will double check connectivity.****
>
> ** **
>
> *Thanks,*
>
> ****
>
> *From:* Miguel Amez [mailto:villalvi...@gmail.com <villalvi...@gmail.com>]
>
> *Sent:* Friday, August 30, 2013 12:28 AM
>
> *To:* openthinclient-user@lists.sourceforge.net
> *Subject:* Re: [openthinclient-user] Issues booting from
> differentsubnet."Running /scripts/init-bottom..."****
>
> ** **
>
> Hi Taras,****
>
> I think I've found your problem: You said that you have 2 VLANs, 1 for the
> server and 1 for the clients, and you also said that your firewall has the
> correct rules for connecting each VLAN with the other...****
>
> Do you have those rules in iptables? Are you completly sure that you can
> reach a computer in VLAN2 from a computer in VLAN1 and viceversa? I think
> that the problem is on the firewall's rules and routes: you said that you
> have your rules right, but... Did you check your firewall routes?****
>
> One more thing: I don't know if you really need 2 VLANs on your real
> scenario, but if you can fully reach computers in VLAN2 from computers in
> VLAN1 and viceversa... Which is the sense of separating them in VLANs? This
> way you will have encription over the network layer, so slower connection,
> more dificult-to-manage network infraestructures, complicated rules on
> firewall, ... Why don't you define a bigger LAN with a suitable mask for
> this scenario? Maybe a big problem have a small solution on the very
> beginning approach... Think about it.****
>
> But if you really need VLANs, please check connectivity between VLANs with
> pxe, NFS, NTFS and CIFS ports firstly.****
>
> Regards,****
>
> ** **
>
> 2013/8/29 Taras Tomkiv <ttom...@westernpaper.com>****
>
> Miguel,****
>
> ****
>
> Thank you for getting back to me. Let me clear this up:****
>
> ****
>
> Server:****
>
> Server is a VM (running on ESXi 5.1) on Ubuntu 12.04, VLAN 1 and
> 192.168.103.44. Base software is 1.0.0-17****
>
> ****
>
> Client:****
>
> There are 3 clients: 1 is testing VM, another 2 are regular PCs using PXE
> boot (one Compaq and another is HP). Clients are in the VLAN 2 and subnet
> is 192.168.102.0/24. All clients used to be able to boot from the server,
> but not anymore…unless I move them to the VLAN 1. ****
>
> ****
>
> Firewall rule is to allow all traffic from VLAN 2 to 192.168.103.44 (OTC
> server) and vice versa.****
>
> ****
>
> DHCP server is on the firewall.****
>
> ****
>
> Clients connect to the server, download the image but then it hangs on
> “Running /scripts/init-bottom…[76.544064] nfs: server 192.168.103.44 not
> responding, still trying”****
>
> Please, let me know if you need anything else.****
>
> ****
>
> -------------------------------------****
>
> From: Miguel Amez [mailto:villalvi...@gmail.com] ****
>
> Sent: Thursday, August 29, 2013 12:10 AM****
>
> To: openthinclient-user@lists.sourceforge.net****
>
> Subject: Re: [openthinclient-user] Issues booting from different
> subnet."Running /scripts/init-bottom..."****
>
> ****
>
> Hi Taras,****
>
> Details of your configuration are not really clear at all...****
>
> Can you please give hardware and software specifications of your network?
> (for example firewall rules, network topology, subnets, if you have vlans
> in your configuration, etc.)****
>
> It is very dificult to understand the nature of your problem if you don't
> give more information.****
>
> Regards,****
>
> Miguel Amez****
>
> ****
>
> 2013/8/29 Taras Tomkiv <ttom...@westernpaper.com>****
>
> Hellom****
>
> I have an issue with Openthinclient. Client can boot from the server in
> the same subnet and I also was able to boot my other clients from different
> subnet, but not anymore. No changes were made and now I cannot boot from
> different subnet, I receive this error after Splash screen:****
>
> “Running /scripts/init-bottom…****
>
> [76.544064] nfs: server 192.168.103.44 not responding, still trying”****
>
> The same client can boot from the server if I switch it to the server’s
> subnet.****
>
> Server is Ubuntu 12.04 LTS running on VMware ESXi 5.1****
>
> Tried three different clients and I get the same result. Tried removing
> firewall rules too and that didn’t help. Firewall on Ubuntu is disabled as
> well. ****
>
> ****
>
> Thank you!****
>
>
>
> ------------------------------------------------------------------------------
> Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more!
> Discover the easy way to master current and previous Microsoft technologies
> and advance your career. Get an incredible 1,500+ hours of step-by-step
> tutorial videos with LearnDevNow. Subscribe today and save!
> http://pubads.g.doubleclick.net/gampad/clk?id=58040911&iu=/4140/ostg.clktrk
> _______________________________________________
> The Open Source Thin Client Solution http://openthinclient.org
> openthinclient-user@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/openthinclient-user****
>
> ** **
>
>
> ------------------------------------------------------------------------------
> Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more!
> Discover the easy way to master current and previous Microsoft technologies
> and advance your career. Get an incredible 1,500+ hours of step-by-step
> tutorial videos with LearnDevNow. Subscribe today and save!
> http://pubads.g.doubleclick.net/gampad/clk?id=58040911&iu=/4140/ostg.clktrk
> _______________________________________________
> The Open Source Thin Client Solution http://openthinclient.org
> openthinclient-user@lists.sourceforge.net
> https://lists.sourceforge.net/lists/listinfo/openthinclient-user
>
>
------------------------------------------------------------------------------
Learn the latest--Visual Studio 2012, SharePoint 2013, SQL 2012, more!
Discover the easy way to master current and previous Microsoft technologies
and advance your career. Get an incredible 1,500+ hours of step-by-step
tutorial videos with LearnDevNow. Subscribe today and save!
http://pubads.g.doubleclick.net/gampad/clk?id=58040911&iu=/4140/ostg.clktrk
_______________________________________________
The Open Source Thin Client Solution http://openthinclient.org
openthinclient-user@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/openthinclient-user
