[gentoo-user] Need help networking two machines.

[gentoo-user] Need help networking two machines.

[Dale]

Hi

I have done this before.  Maybe something has changed because I can not
get it to work now.  My main rig is called smoker.  The second rig is
currently booted off the CD.  I plan to use my main rig to sync and get
distfiles off of.  This is off smokers /etc/conf.d/net file:

> config_eth0=( "192.168.0.1 netmask 255.255.255.0 broadcast
> 192.168.0.255" )
More info from smoker:

> eth0      Link encap:Ethernet  HWaddr 00:01:53:81:00:E7
>           inet addr:192.168.0.1  Bcast:192.168.0.255  Mask:255.255.255.0
>           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>           RX packets:34 errors:0 dropped:0 overruns:0 frame:0
>           TX packets:205 errors:0 dropped:0 overruns:0 carrier:0
>           collisions:0 txqueuelen:1000
>           RX bytes:16458 (16.0 Kb)  TX bytes:5670 (5.5 Kb)
>           Interrupt:10 Base address:0xc000

> root@smoker / # ping 192.168.0.2
> PING 192.168.0.2 (192.168.0.2) 56(84) bytes of data.
> From 192.168.0.1 icmp_seq=1 Destination Host Unreachable
> From 192.168.0.1 icmp_seq=2 Destination Host Unreachable
> From 192.168.0.1 icmp_seq=3 Destination Host Unreachable
>
> --- 192.168.0.2 ping statistics ---
> 5 packets transmitted, 0 received, +3 errors, 100% packet loss, time
> 4009ms
> , pipe 3
> root@smoker / #

If it helps any, I see traffic going over the network in gkrellm.

> root@smoker / # route
> Kernel IP routing table
> Destination     Gateway         Genmask         Flags Metric Ref   
> Use Iface
> nas2.greenwood1 *               255.255.255.255 UH    0      0       
> 0 ppp0
> 192.168.0.0     *               255.255.255.0   U     0      0       
> 0 eth0
> loopback        *               255.0.0.0       U     0      0        0 lo
> default         nas2.greenwood1 0.0.0.0         UG    0      0       
> 0 ppp0
> root@smoker / # 
Yea, ppp0 would be that slow as crap dial-up connection I have.  < cries >
> root@smoker / # iptables -L
> Chain INPUT (policy ACCEPT)
> target     prot opt source               destination
> ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:http
> DROP       all  --  anywhere             anywhere            state
> INVALID,NEW
>
> Chain FORWARD (policy ACCEPT)
> target     prot opt source               destination
> DROP       all  --  anywhere             anywhere            state
> INVALID,NEW
>
> Chain OUTPUT (policy ACCEPT)
> target     prot opt source               destination
> root@smoker / #

Now the info from the second rig is a bit hard to get.  I can't exactly
copy and paste here.  Help me get this working and I'll copy and paste
all you want.  LOL  Second rig is the same setup except it is set to
address 192.168.0.2.  I did restart the network though, on both rigs.

Route returns loopback and that is all.  Looks suspicious to me.  It
doesn't have iptables installed on the CD.  I guess there are none.

Oh, to test the cable, I set both to the same address.  When I tried to
bring up the network, it gave me a error that the address was in use or
something like that.  It saw it at least.

Can someone tell me what I am doing wrong?  It has to be me.  It almost
always is.

Thanks for the help. 

Dale

:-)  :-)  :-)

-- 
www.myspace.com/dalek1967

-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Need help networking two machines.

[Daniel Iliev]

Dale wrote:
> Hi
>
> I have done this before.  Maybe something has changed because I can not
> get it to work now.  My main rig is called smoker.  The second rig is
> currently booted off the CD.  I plan to use my main rig to sync and get
> distfiles off of.  This is off smokers /etc/conf.d/net file:
>
>   
>> config_eth0=( "192.168.0.1 netmask 255.255.255.0 broadcast
>> 192.168.0.255" )
>>     
> More info from smoker:
>
>   
>> eth0      Link encap:Ethernet  HWaddr 00:01:53:81:00:E7
>>           inet addr:192.168.0.1  Bcast:192.168.0.255  Mask:255.255.255.0
>>           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
>>           RX packets:34 errors:0 dropped:0 overruns:0 frame:0
>>           TX packets:205 errors:0 dropped:0 overruns:0 carrier:0
>>           collisions:0 txqueuelen:1000
>>           RX bytes:16458 (16.0 Kb)  TX bytes:5670 (5.5 Kb)
>>           Interrupt:10 Base address:0xc000
>>     
>
>   
>> root@smoker / # ping 192.168.0.2
>> PING 192.168.0.2 (192.168.0.2) 56(84) bytes of data.
>> From 192.168.0.1 icmp_seq=1 Destination Host Unreachable
>> From 192.168.0.1 icmp_seq=2 Destination Host Unreachable
>> From 192.168.0.1 icmp_seq=3 Destination Host Unreachable
>>
>> --- 192.168.0.2 ping statistics ---
>> 5 packets transmitted, 0 received, +3 errors, 100% packet loss, time
>> 4009ms
>> , pipe 3
>> root@smoker / #
>>     
>
> If it helps any, I see traffic going over the network in gkrellm.
>
>   
>> root@smoker / # route
>> Kernel IP routing table
>> Destination     Gateway         Genmask         Flags Metric Ref   
>> Use Iface
>> nas2.greenwood1 *               255.255.255.255 UH    0      0       
>> 0 ppp0
>> 192.168.0.0     *               255.255.255.0   U     0      0       
>> 0 eth0
>> loopback        *               255.0.0.0       U     0      0        0 lo
>> default         nas2.greenwood1 0.0.0.0         UG    0      0       
>> 0 ppp0
>> root@smoker / # 
>>     
> Yea, ppp0 would be that slow as crap dial-up connection I have.  < cries >
>   
>> root@smoker / # iptables -L
>> Chain INPUT (policy ACCEPT)
>> target     prot opt source               destination
>> ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:http
>> DROP       all  --  anywhere             anywhere            state
>> INVALID,NEW
>>
>> Chain FORWARD (policy ACCEPT)
>> target     prot opt source               destination
>> DROP       all  --  anywhere             anywhere            state
>> INVALID,NEW
>>
>> Chain OUTPUT (policy ACCEPT)
>> target     prot opt source               destination
>> root@smoker / #
>>     
>
> Now the info from the second rig is a bit hard to get.  I can't exactly
> copy and paste here.  Help me get this working and I'll copy and paste
> all you want.  LOL  Second rig is the same setup except it is set to
> address 192.168.0.2.  I did restart the network though, on both rigs.
>
> Route returns loopback and that is all.  Looks suspicious to me.  It
> doesn't have iptables installed on the CD.  I guess there are none.
>
> Oh, to test the cable, I set both to the same address.  When I tried to
> bring up the network, it gave me a error that the address was in use or
> something like that.  It saw it at least.
>
> Can someone tell me what I am doing wrong?  It has to be me.  It almost
> always is.
>
> Thanks for the help. 
>
> Dale
>
> :-)  :-)  :-)
>
>   

Hi, Dale

I suspect you don't have a proper module for your network card loaded
into the kernel. Is the interface of "rig-2" up? What does "ifconfig
eth0" say?

-- 
Best regards,
Daniel


-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Need help networking two machines.

[Dale]

[-- Attachment #1: Type: text/plain, Size: 1139 bytes --]

Daniel Iliev wrote:
> Dale wrote:
>   
>> Hi
>>
>> I have done this before.  Maybe something has changed because I can not
>> get it to work now.  My main rig is called smoker.  The second rig is
>> currently booted off the CD.  I plan to use my main rig to sync and get
>> distfiles off of.  This is off smokers /etc/conf.d/net file:
>>
>> < snip >
>>
>> Can someone tell me what I am doing wrong?  It has to be me.  It almost
>> always is.
>>
>> Thanks for the help. 
>>
>> Dale
>>
>> :-)  :-)  :-)
>>
>>   
>>     
>
> Hi, Dale
>
> I suspect you don't have a proper module for your network card loaded
> into the kernel. Is the interface of "rig-2" up? What does "ifconfig
> eth0" say?
>
>   

When I type in ifconfig, it says it is up and running fine with the
correct address and all.  lsmod shows the module is loaded.  It is the
correct module as far as I can tell.  It's the 8139 module.

When I ping from the CD booted computer to smoker, I see data in gkrellm
on smoker on eth0.  It's getting there.  I think iptables is blocking me
or something as silly as that.

Any ideas?

Dale

:-)  :-)  :-)

-- 
www.myspace.com/dalek1967


[-- Attachment #2: Type: text/html, Size: 1729 bytes --]

Re: [gentoo-user] Need help networking two machines.

[Thomas Lingefelt]

Dale wrote:
> Daniel Iliev wrote:
>> Dale wrote:
>>   
>>> Hi
>>>
>>> I have done this before.  Maybe something has changed because I can not
>>> get it to work now.  My main rig is called smoker.  The second rig is
>>> currently booted off the CD.  I plan to use my main rig to sync and get
>>> distfiles off of.  This is off smokers /etc/conf.d/net file:
>>>
>>> < snip >
>>>
>>> Can someone tell me what I am doing wrong?  It has to be me.  It almost
>>> always is.
>>>
>>> Thanks for the help. 
>>>
>>> Dale
>>>
>>> :-)  :-)  :-)
>>>
>>>   
>>>     
>>
>> Hi, Dale
>>
>> I suspect you don't have a proper module for your network card loaded
>> into the kernel. Is the interface of "rig-2" up? What does "ifconfig
>> eth0" say?
>>
>>   
> 
> When I type in ifconfig, it says it is up and running fine with the
> correct address and all.  lsmod shows the module is loaded.  It is the
> correct module as far as I can tell.  It's the 8139 module.
> 
> When I ping from the CD booted computer to smoker, I see data in gkrellm
> on smoker on eth0.  It's getting there.  I think iptables is blocking me
> or something as silly as that.
> 
> Any ideas?
> 
> Dale
> 
> :-)  :-)  :-)
> 
> -- 
> www.myspace.com/dalek1967
> 

I stole this from here:
http://web.onetel.net.uk/~showerail/firewall_disabling.html

If its iptables then this should work...

iptables -F
iptables -t nat -F
iptables -P INPUT  ACCEPT
iptables -P FORWARD ACCEPT
iptables -P OUTPUT ACCEPT

-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Need help networking two machines.

[Dale]

Thomas Lingefelt wrote:
> Dale wrote:
>   
> I stole this from here:
> http://web.onetel.net.uk/~showerail/firewall_disabling.html
>
> If its iptables then this should work...
>
> iptables -F
> iptables -t nat -F
> iptables -P INPUT  ACCEPT
> iptables -P FORWARD ACCEPT
> iptables -P OUTPUT ACCEPT
>
>   

Sorry for the delay responding.  I ordered a 2.4GHz CPU for that
machine, replacing a 1GHz, and was hoping it would run it.  It doesn't
like the new CPU.  I think the mobo is to old or something.  No beep, no
boot, no nothing.  :-(  Anyway . . . . .

I ran those commands and it now works fine.  I can ssh and everything. 
When I run /etc/init.d/iptables save, where does it save those too?  I
want to save the rules I had, just in case.  I thought it was in /var
somewhere but I can't find it. 

I need to learn iptables I guess.  It looks like those commands open
everything up.  I also don't know if it will connect the second rig to
the net through my main box.  Something I'll have to test out later.

Thanks for the help.

Dale

:-)  :-)  :-)  :-)

-- 
www.myspace.com/dalek1967

-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Need help networking two machines.

[Daniel Iliev]

Dale wrote:
> I ran those commands and it now works fine. I can ssh and everything.
> When I run /etc/init.d/iptables save, where does it save those too?  I
> want to save the rules I had, just in case.  I thought it was in /var
> somewhere but I can't find it. 
>
>   

- It is defined in "/etc/conf.d/iptables" as variable named IPTABLES_SAVE.

> I need to learn iptables I guess.  It looks like those commands open
> everything up.  I also don't know if it will connect the second rig to
> the net through my main box.  Something I'll have to test out later.
>   
No, it would not connect the second rig to The Internet if you use reserved IP addresses (eg. 10.X.X.X or 192.168.X.X). In that case you have to enable ip forwarding and network address translation (NAT) on the rig which is connected to The Internet.  May be it is a good start to read the "Home Router Guide" [1]. 
The following quick & dirty guide  should be suffucient:

1) put "net.ipv4.ip_forward = 1" in "/etc/sysctl.conf"
2) sysctl -p
3) iptables -t nat -A POSTROUTING -o ethX -j MASQUERADE
(replace "ethX" with the name of the interface connected to The Internet)
4) /etc/init.d/iptables save
5) rc-update -a iptables default


Please, read the guide [1] provided by Gentoo. The solution I'm showing here is really dirty because it doesn't provide any security.


[1] http://www.gentoo.org/doc/en/home-router-howto.xml
 
-- 
Best regards,
Daniel


-- 
gentoo-user@gentoo.org mailing list

Re: [gentoo-user] Need help networking two machines.

[Mick]

[-- Attachment #1: Type: text/plain, Size: 2921 bytes --]

Some quick thoughts:

On Friday 12 January 2007 10:09, Dale wrote:
> Hi
>
> I have done this before.  Maybe something has changed because I can not
> get it to work now.  My main rig is called smoker.  The second rig is
> currently booted off the CD.  I plan to use my main rig to sync and get
>
> distfiles off of.  This is off smokers /etc/conf.d/net file:
> > config_eth0=( "192.168.0.1 netmask 255.255.255.0 broadcast
> > 192.168.0.255" )
>
> More info from smoker:
> > eth0      Link encap:Ethernet  HWaddr 00:01:53:81:00:E7
> >           inet addr:192.168.0.1  Bcast:192.168.0.255  Mask:255.255.255.0
> >           UP BROADCAST RUNNING MULTICAST  MTU:1500  Metric:1
> >           RX packets:34 errors:0 dropped:0 overruns:0 frame:0
> >           TX packets:205 errors:0 dropped:0 overruns:0 carrier:0
> >           collisions:0 txqueuelen:1000
> >           RX bytes:16458 (16.0 Kb)  TX bytes:5670 (5.5 Kb)
> >           Interrupt:10 Base address:0xc000
> >
> > root@smoker / # ping 192.168.0.2
> > PING 192.168.0.2 (192.168.0.2) 56(84) bytes of data.
> > From 192.168.0.1 icmp_seq=1 Destination Host Unreachable
> > From 192.168.0.1 icmp_seq=2 Destination Host Unreachable
> > From 192.168.0.1 icmp_seq=3 Destination Host Unreachable
> >
> > --- 192.168.0.2 ping statistics ---
> > 5 packets transmitted, 0 received, +3 errors, 100% packet loss, time
> > 4009ms
> > , pipe 3
> > root@smoker / #
>
> If it helps any, I see traffic going over the network in gkrellm.

So, we know that packets go out, but we don't know if they are returned.  We 
also don't know if in case they are returned your iptables knock them out.

> > root@smoker / # iptables -L
> > Chain INPUT (policy ACCEPT)
> > target     prot opt source               destination
> > ACCEPT     tcp  --  anywhere             anywhere            tcp dpt:http
> > DROP       all  --  anywhere             anywhere            state
> > INVALID,NEW
> >
> > Chain FORWARD (policy ACCEPT)
> > target     prot opt source               destination
> > DROP       all  --  anywhere             anywhere            state
> > INVALID,NEW
> >
> > Chain OUTPUT (policy ACCEPT)
> > target     prot opt source               destination
> > root@smoker / #

Try again after you take iptables down, /etc/init.d/iptables stop, so that you 
eliminate one factor at a time.

> Route returns loopback and that is all.  Looks suspicious to me.  It
> doesn't have iptables installed on the CD.  I guess there are none.
>
> Oh, to test the cable, I set both to the same address.  When I tried to
> bring up the network, it gave me a error that the address was in use or
> something like that.  It saw it at least.
>
> Can someone tell me what I am doing wrong?  It has to be me.  It almost
> always is.

What does this give you:

# cat /proc/sys/net/ipv4/icmp_echo_ignore_all

HTH.
-- 
Regards,
Mick

[-- Attachment #2: Type: application/pgp-signature, Size: 189 bytes --]