> I think that the problem you have is that the DNS you are using is > configured to only reply to some range of IPs. Your DNS is receiving the > query from the proxy-etr and rejecting it as the source IP address is not > from its domain. You can try to use the DNS from google (8.8.8.8) which > doesn't have this limitation. Wow I would have had a hard time figuring out this, did not know about this policy. I tried your solution and it works. For my first post behind a LISP router hiphip hourra \o/
> Regarding Wireshark capture, in the main screen, it only appears a summary > of the packet. If you expand the packet, you will see that the external > header has the correct values. Once more you are right. I really should have looked the full wireshark report sorry :( > PS: If you don't main, I will also add you to the announcements mailing list > in order you receive a notification for new releases of the software. Please do thanks. I once read that lispmob doesn't support multihoming ? Is that still true ? I would like to announce several RLOCs (1 ISP I get via wifi, 1 ISP via wire) for the same ITR and load balance outgoing flows between the 2 RLOCs. Best regards. Thanks again :) Matt > > > > On 03/12/2013 05:32 PM, Teto wrote: >> >> Hi, >> >> First of all, thanks for your help ! >> I've passed my modem into bridging mode and disabled its dhcp. It has >> turned off its firewall( i checked the modem configuration, iptables >> etc... it is a brand new DSL320B >> >> http://www.dlink.com/uk/en/home-solutions/connect/modems-and-gateways/dsl-320b-adsl-2-ethernet-modem). >> I run ubuntu which has no default fw either >> .teto@tatooine:~$ sudo iptables --list >> Chain INPUT (policy ACCEPT) >> target prot opt source destination >> >> Chain FORWARD (policy ACCEPT) >> target prot opt source destination >> >> Chain OUTPUT (policy ACCEPT) >> target prot opt source destination >> >> To sum up the current configuration, my ubuntu connects via pppoe to >> my modem which converts that connection into pppoa to France Telecom >> device with IP 193.253.160.3 (I guess that would be the BAS ?). >> Without running LISPmob, ppp0 is assigned my public IP address, >> physicall everything is sent to eth0: >> teto@tatooine:~$ ifconfig >> eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 >> inet 192.168.1.45 netmask 255.255.255.0 broadcast 192.168.1.255 >> inet6 fe80::4a5b:39ff:fe3d:1a9c prefixlen 64 scopeid 0x20<link> >> ether 48:5b:39:3d:1a:9c txqueuelen 1000 (Ethernet) >> >> lo: flags=73<UP,LOOPBACK,RUNNING> mtu 16436 >> inet 127.0.0.1 netmask 255.0.0.0 >> inet6 ::1 prefixlen 128 scopeid 0x10<host> >> >> ppp0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1492 >> inet 82.121.101.237 netmask 255.255.255.255 destination >> 193.253.160.3 >> >> >> I now receive map-notify and map-reply answers: >> : OUTPUT: Orig src: 82.121.101.237 | Orig dst: 195.50.116.18 >> DEBUG-3: Fordwarding native for destination 195.50.116.18 >> DEBUG-3: Received IPv4 packet in the control input buffer (4342) >> DEBUG-2: Received a LISP control message >> DEBUG: Received a LISP Map-Notify message >> DEBUG: Map-Notify message confirms correct registration >> DEBUG-2: Completed processing of LISP control message >> and I can use LISP but without DNS: DNS requests recieve no answer. >> For instance I could surf the lisp4.net page or even gmail as long as >> their I think the problem is because my DNS requests don't get >> encapsulated by LISPmob (cf screenshot of capturing eth0, the physical >> interface by which every packet passes): the underlined packet asks my >> dns resolver 80.10.246.1 from my EID (153.16.149.112), shouldn't it be >> encapsulated by my itr (82.121.101.237) to go to a petr ? >> >> >> Here is the ifconfig with LISPmob enabled >> teto@tatooine:~$ ifconfig >> eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 >> inet 192.168.1.45 netmask 255.255.255.0 broadcast 192.168.1.255 >> inet6 fe80::4a5b:39ff:fe3d:1a9c prefixlen 64 scopeid 0x20<link> >> ether 48:5b:39:3d:1a:9c txqueuelen 1000 (Ethernet) >> >> lispTun0: flags=81<UP,POINTOPOINT,RUNNING> mtu 1440 >> inet 153.16.49.112 netmask 255.255.255.255 destination >> 153.16.49.112 >> >> >> lo: flags=73<UP,LOOPBACK,RUNNING> mtu 16436 >> inet 127.0.0.1 netmask 255.0.0.0 >> inet6 ::1 prefixlen 128 scopeid 0x10<host> >> >> ppp0: flags=4305<UP,POINTOPOINT,RUNNING,NOARP,MULTICAST> mtu 1492 >> inet 82.121.101.237 netmask 255.255.255.255 destination >> 193.253.160.3 >> ppp txqueuelen 3 (Point-to-Point Protocol) >> >> >> Flollowing command with lispmob enabled: >> teto@tatooine:~/lig$ ip route >> 0.0.0.0/1 dev lispTun0 proto static >> default dev ppp0 scope link >> 128.0.0.0/1 dev lispTun0 proto static >> 192.168.1.0/24 dev eth0 proto kernel scope link src 192.168.1.45 >> metric 1 >> 193.253.160.3 dev ppp0 proto kernel scope link src 82.121.101.237 >> >> >> lig sends requests via eth0 ( address 192.168.1.45) even though I did >> lig -m 195.50.116.18 -s 82.121.101.237 132.227.86.4 so it isn't a >> good test. >> >> Matt >> >> >> On Mon, Mar 11, 2013 at 11:02 AM, Alberto Rodríguez-Natal >> <[email protected]> wrote: >>> >>> Hi Matthieu, >>> >>> We see that you got neither Map-Reply, nor Map-Notify. Please, make sure >>> that you are not behind a firewall. >>> >>> You should be able to check the Map-Resolver (to see if you can get any >>> Map-Reply, regardless of LISPmob) with the lig tool. >>> >>> Regarding your PETR question, at this point LISPmob chooses the first >>> valid >>> PETR from the config file. Improvements on PETR selection are expected in >>> future releases. >>> >>> Please, get back to us once you check if there is a firewall affecting >>> LISPmob. >>> >>> Regards >>> Alberto >>> >>> >>> On 9 March 2013 14:00, Teto <[email protected]> wrote: >>>> >>>> Hi, >>>> >>>> I am a brand new user of LISPmob (0.3.1) which I am running on Ubuntu >>>> 12.10 (planning to use OpenWRT once I get it working on my laptop), I >>>> successfully register on london mapping server (that's what tell me >>>> http://www.lisp4.net/lisp-site). I've sucessuflly done all the systcl >>>> commands. I get a public IP from orange, I just get a basic modem >>>> between my >>>> When I try to surf through the internet though it doesn't work, I can >>>> see map-requests but don't see map-reply (cf enclosed picture of >>>> wireshark). Also I don't understand why when I sned a map-request for >>>> an EID x, the map-request is sent to x and not the mapping resolver ? >>>> For instance I send a map request to know the rloc to which >>>> 132.227.86.4 (<=> webmail.lip6.fr) is attached (cf the same picture) >>>> and it is sent to 132.227.86.4. >>>> >>>> >>>> >>>> >>>> Here is my ifconfig when lispd running: >>>> >>>> teto@tatooine:~/lig$ ifconfig >>>> eth0: flags=4163<UP,BROADCAST,RUNNING,MULTICAST> mtu 1500 >>>> inet 82.121.235.206 netmask 255.255.255.255 broadcast >>>> 82.121.235.206 >>>> inet6 fe80::4a5b:39ff:fe3d:1a9c prefixlen 64 scopeid >>>> 0x20<link> >>>> ether 48:5b:39:3d:1a:9c txqueuelen 1000 (Ethernet) >>>> RX packets 24815 bytes 18555096 (17.6 MiB) >>>> RX errors 0 dropped 0 overruns 0 frame 0 >>>> TX packets 20693 bytes 3127093 (2.9 MiB) >>>> TX errors 0 dropped 0 overruns 0 carrier 3 collisions 0 >>>> >>>> lispTun0: flags=81<UP,POINTOPOINT,RUNNING> mtu 1440 >>>> inet 153.16.49.112 netmask 255.255.255.255 destination >>>> 153.16.49.112 >>>> unspec 00-00-00-00-00-00-00-00-00-00-00-00-00-00-00-00 >>>> txqueuelen 500 (UNSPEC) >>>> RX packets 0 bytes 0 (0.0 B) >>>> RX errors 0 dropped 0 overruns 0 frame 0 >>>> TX packets 7 bytes 696 (696.0 B) >>>> TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 >>>> >>>> lo: flags=73<UP,LOOPBACK,RUNNING> mtu 16436 >>>> inet 127.0.0.1 netmask 255.0.0.0 >>>> inet6 ::1 prefixlen 128 scopeid 0x10<host> >>>> loop txqueuelen 0 (Local Loopback) >>>> RX packets 614 bytes 51824 (50.6 KiB) >>>> RX errors 0 dropped 0 overruns 0 frame 0 >>>> TX packets 614 bytes 51824 (50.6 KiB) >>>> TX errors 0 dropped 0 overruns 0 carrier 0 collisions 0 >>>> >>>> >>>> >>>> Here is my lispd.conf used when launching lispd: >>>> >>>> debug = 3 # Debug level [0..3] >>>> map-request-retries = 2 # send 2 before giving >>>> up >>>> >>>> # LISP Config >>>> # >>>> >>>> # Encapsulated Map-Requests are sent to this map resolver >>>> map-resolver = { >>>> 195.50.116.18 # = london >>>> } >>>> >>>> # Register to this map server >>>> map-server { >>>> address = 195.50.116.18 # Address of the map >>>> server (IPv4 or IPv6) = london >>>> key-type = 1 # SHA1 >>>> key = myUberCoolPassword # no need to check, it is >>>> not my true password :p >>>> proxy-reply = on } >>>> >>>> # Encapsulate packets for non-LISP sites to this Proxy-ETR >>>> proxy-etr { >>>> # address = 149.20.48.60 # latence de 100 ms >>>> address = 217.8.98.33 #latence de 30 ms >>>> priority = 1 >>>> weight = 100 >>>> } >>>> >>>> # IPv4 EID of the mobile node >>>> database-mapping { >>>> eid-prefix = 153.16.49.112/28 >>>> interface = eth0 # Interface >>>> containing the RLOCs associated to this EID >>>> priority_v4 = 1 >>>> weight_v4 = 100 >>>> priority_v6 = 0 >>>> weight_v6 = 100 >>>> } >>>> >>>> # ask ms to proxy reply >>>> proxy-itrs = { >>>> 69.31.31.98, # eqx-ash-pxtr >>>> 149.20.48.60, # isc-pxtr >>>> 198.6.255.37, # asp-pxtr >>>> 129.250.1.63, # ntt-amer-pxtr >>>> 217.8.98.33, # intouch-pxtr-1 >>>> 217.8.98.35, # intouch-pxtr-2 >>>> 193.162.145.46, # tdc-pxtr >>>> 158.38.1.92, # uninett-pxtr >>>> 203.181.249.172 # apan-pxtr >>>> } >>>> >>>> >>>> Here is the output when launching lispd: >>>> teto@tatooine:~/lig$ sudo lispd -f /etc/lispd.conf >>>> [sudo] password for teto: >>>> DEBUG: Added 195.50.116.18 to map-resolver list >>>> DEBUG: Added 217.8.98.33 to proxy-etr list >>>> DEBUG: Added 69.31.31.98 to proxy-itr list >>>> DEBUG: Added 149.20.48.60 to proxy-itr list >>>> DEBUG: Added 198.6.255.37 to proxy-itr list >>>> DEBUG: Added 129.250.1.63 to proxy-itr list >>>> DEBUG: Added 217.8.98.33 to proxy-itr list >>>> DEBUG: Added 217.8.98.35 to proxy-itr list >>>> DEBUG: Added 193.162.145.46 to proxy-itr list >>>> DEBUG: Added 158.38.1.92 to proxy-itr list >>>> DEBUG: Added 203.181.249.172 to proxy-itr list >>>> DEBUG-2: The entry 153.16.49.112 is not found in the data base >>>> DEBUG-2: Identifier 153.16.49.112/28 inserted in the database >>>> DEBUG-3: lispd_get_iface_address: MN's IPv4 RLOC from interface >>>> (eth0): 82.121.235.206 >>>> >>>> DEBUG: lispd_get_iface_address: interface address discarded >>>> (fe80::4a5b:39ff:fe3d:1a9c) >>>> DEBUG-3: lispd_get_iface_address: No IPv6 RLOC configured for interface >>>> eth0 >>>> >>>> DEBUG-2: add_interface: Interface eth0 added to interfaces lists >>>> DEBUG: Added identifier 153.16.49.112 in the database. >>>> DEBUG: Added 195.50.116.18 to map-server list >>>> DEBUG: get_lisp_addr_and_mask_from_char: Prefix not of the form >>>> prefix/length: (null) >>>> ERR: Configuration file: Error parsing RLOC address ...Ignoring static >>>> map cache entry >>>> WARNING: Can't add static-map-cache (EID:(null) -> RLOC:(null)). >>>> Discarded >>>> ... >>>> INFO: Log level: High Debug >>>> DEBUG: ****** Summary of the configuration ****** >>>> DEBUG: *** LISP Local EIDs *** >>>> >>>> >>>> DEBUG: 153.16.49.112/28 (IID = -1) >>>> >>>> DEBUG: Locator State Priority/Weight >>>> >>>> DEBUG: 82.121.235.206 >>>> DEBUG: Up >>>> DEBUG: 1/100 >>>> >>>> DEBUG: >>>> >>>> DEBUG: *** LISP Mapping Cache *** >>>> >>>> >>>> DEBUG: *** Map-Servers list: *** >>>> DEBUG: 195.50.116.18 key-type: 1 >>>> DEBUG: *** Map-Resolvers *** >>>> DEBUG: 195.50.116.18 >>>> DEBUG: *** Proxy ETRs List *** >>>> DEBUG: 217.8.98.33 priority: 1 weight: 100 >>>> DEBUG: *** Proxy-ITRs *** >>>> DEBUG: 203.181.249.172 >>>> DEBUG: 158.38.1.92 >>>> DEBUG: 193.162.145.46 >>>> DEBUG: 217.8.98.35 >>>> DEBUG: 217.8.98.33 >>>> DEBUG: 129.250.1.63 >>>> DEBUG: 198.6.255.37 >>>> DEBUG: 149.20.48.60 >>>> DEBUG: 69.31.31.98 >>>> DEBUG-2: Default IPv4 iface eth0 >>>> >>>> DEBUG-2: Default IPv4 control iface eth0 >>>> >>>> DEBUG-3: TUN/TAP ifindex is: 9 >>>> DEBUG: TUN/TAP mtu set to 1440 >>>> DEBUG-2: Tunnel fd at creation is 6 >>>> DEBUG: TUN interface UP. >>>> DEBUG: added 153.16.49.112 EID to TUN interface. >>>> DEBUG: Installed default route via TUN device >>>> DEBUG: Installed default route via TUN device >>>> DEBUG-3: open_udp_socket: socket at creation: 7 >>>> >>>> DEBUG-3: open_udp_socket: socket at creation: 8 >>>> >>>> DEBUG-3: open_udp_socket: socket at creation: 9 >>>> >>>> DEBUG-3: open_udp_socket: socket at creation: 10 >>>> >>>> DEBUG: Sent map register for 153.16.49.112/28 to maps server >>>> 195.50.116.18 >>>> DEBUG: Reprogrammed map register for 153.16.49.112/28 in 60 seconds >>>> INFO: LISPmob: 'lispd' started... >>>> DEBUG-3: Received packet in the tun buffer >>>> DEBUG-3: OUTPUT: Orig src: 153.16.49.112 | Orig dst: 80.10.246.1 >>>> >>>> DEBUG-3: lookup_map_cache_node: The entry 80.10.246.1 is not found in >>>> the map cache >>>> DEBUG: No map cache retrieved for eid 80.10.246.1 >>>> DEBUG-2: Added map cache entry for EID: 80.10.246.1/32 >>>> DEBUG-3: open_udp_socket: socket at creation: 10 >>>> >>>> DEBUG: Sent Map-Request packet for 80.10.246.1/32 >>>> DEBUG-3: OUTPUT: Encap src: 82.121.235.206 | Encap dst: 217.8.98.33 >>>> >>>> DEBUG-3: Fordwarded eid 80.10.246.1 to petr >>>> DEBUG-3: Received packet in the tun buffer >>>> DEBUG-3: OUTPUT: Orig src: 82.121.235.206 | Orig dst: 195.50.116.18 >>>> >>>> DEBUG-3: Fordwarding native for destination 195.50.116.18 >>>> DEBUG-3: Received packet in the tun buffer >>>> DEBUG-3: OUTPUT: Orig src: 82.121.235.206 | Orig dst: 195.50.116.18 >>>> >>>> DEBUG-3: Fordwarding native for destination 195.50.116.18 >>>> DEBUG-3: open_udp_socket: socket at creation: 10 >>>> >>>> DEBUG: Sent Map-Request packet for 80.10.246.1/32 >>>> DEBUG-3: Received packet in the tun buffer >>>> DEBUG-3: OUTPUT: Orig src: 82.121.235.206 | Orig dst: 195.50.116.18 >>>> >>>> DEBUG-3: Fordwarding native for destination 195.50.116.18 >>>> DEBUG: Retransmiting Map Request for EID: 80.10.246.1 >>>> DEBUG-3: open_udp_socket: socket at creation: 10 >>>> >>>> DEBUG: Sent Map-Request packet for 80.10.246.1/32 >>>> DEBUG-3: Received packet in the tun buffer >>>> DEBUG-3: OUTPUT: Orig src: 82.121.235.206 | Orig dst: 195.50.116.18 >>>> >>>> DEBUG-3: Fordwarding native for destination 195.50.116.18 >>>> DEBUG: No Map Reply fot EID 80.10.246.1/32 after 2 retries. Removing >>>> map cache entry ... >>>> DEBUG-2: Deleting map cache entry: 80.10.246.1/32 >>>> DEBUG-3: Received packet in the tun buffer >>>> DEBUG-3: OUTPUT: Orig src: 82.121.235.206 | Orig dst: 74.125.230.245 >>>> >>>> DEBUG-2: The entry 82.121.235.206 is not found in the data base >>>> DEBUG-3: Fordwarding native for destination 74.125.230.245 >>>> DEBUG-3: Received packet in the tun buffer >>>> DEBUG-3: OUTPUT: Orig src: 82.121.235.206 | Orig dst: 74.125.230.245 >>>> >>>> >>>> Output of my routing table. >>>> teto@tatooine:~/lig$ ip route >>>> 0.0.0.0/1 dev lispTun0 proto static >>>> default via 192.168.1.1 dev eth0 >>>> 128.0.0.0/1 dev lispTun0 proto static >>>> 192.168.1.1 dev eth0 scope link >>>> >>>> If you need more data or want me to paste it on pastebin (or the >>>> likes) to have a proper formatting, please tell me. >>>> >>>> >>>> Best regards >>>> >>>> Matthieu Coudron >>>> >>>> Nb: As an auxiliary question, if I provide several PETR, does LispMob >>>> select the one with least latency from my host ? >>> >>> > > > -- > Albert López > CCABA System Administrator > Universitat Politècnica de Catalunya > Telf: 93 4017182 >
