what is the best way here? I have like 5 servers, and I want my clients to access each of them, so in case 1 server is down, they can access remaining servers. Also, it will work like user1 chooses the server number and is connecting to a central database, then reply is OK, and he can connect to the server number he wished.
View 1 RepliesI'm using openvpn-2.0.9 with gui-1.0.3 which is set up on windows xp machines(for server and clients) when i set up the server and one client it connects well and i can work without a problem. but when the second client connects it gets the same ip address of the client1, so that both clients can't work at once.
my server and client config files are as follows.
server-configuration file
client1-configuration file
client2-configuration file
I've tried by changing many settings such as server-bridge and all but couldn't find a solution for the problem.
By the way when connected server gets 10.8.0.1/30 and every clients get same ip as 10.8.0.6/30
I have openvpn tunnel setup between two CentOS servers. One of the CentOS servers also acts as a DHCP server for some client computers.
Server A= OpenVPN server
Server B= OpenVPN client (connects to Server A with OpenVPN)
The two CentOS servers can ping each other (172.16.0.0/24) via the tun0.
However, client computer connected to Server B (DHCP server) can't reach 172.16.0.1 (which is the OpenVPN server).
I think I am missing some routing in my "ip route show". Following is the full picture:
What command can I issue to get this fixed? something along ip route add?
There is no firewall service on both end. service iptables stop! I can't bridge eth1 and tun0 as DHCP server might mess up the other side. I can't do a push of "redirect-gateway def1" because then clients loose their IP as they send DHCP requests to Server A.
I can't seem to get the X server to allow access from clients on other hosts. (I know, not exactly a network problem, but. I made the change in /usr/share/gdm/defaults.conf to be : DisallowTCP=false
and this worked on another CentOS system, but it hasn't fixed it on this one. What other things could prevent other clients from connecting to the X server? From the local host, I get :
Warning: Tried to connect to session manager, Authentication Rejected, reason : None of the authentication protocols specified are supported and host-based authentication failed although the client DOES actually create the window and work! So, maybe this message is a clue.
From the remote host, I get : Error: Can't open display: 10.10.1.20:0.0 Which is not terribly informative. Is there a log somewhere which details why a connect request was denied? The files in /var/log/gdm are not very informative.
I've been the las 4 days setting up my first VPN (OpenVPN bridged). The server is up and running OK but when I try to connect I've got this message in the client log.
Quote:
TLS Error: TLS key negotiation failed to occur within 60 seconds (check your network connectivity)
TLS Error: TLS handshake failed
[Code].....
I have an application running inside our lan on server 192.168.0.1:8080. I have configured gateway firewall to direct all traffic on port 80 to port 8080 on 192.168.0.1. So I can access the application from outside lan. Now the problem starts when the application redirects the traffic to another server 192.168.0.2 according to the input of the users. How can I configure the whole system so that I can access the application running on second servers also?
View 3 Replies View Relatedi have setup Open VPN on Ubuntu 9.04, generated the key and have it running successfully on the server end. I download the open vpn client for windows, copied over the key ca and cert file and connected to the erver. All went well and the open vpn gui said its connected to the server (green comp icon in taskbar) and it said in a ballon it assigned me an ip of 10.8.0.6 it all looks good... BUT i have no vpn access... The virtual adapted in windows is not able to pull an actual IP/gateway and such...
[Code]...
I have a few issues after setting up Openvpn. At work i just setup a new Ubuntu Server 10.4. The server itself is working Great. I ended up getting Openvpn installed and working to a point. I have searched online and done as much reading as i could find but i keep running into the problem of not understanding. So here is the problem.
The server is set on a static IP address. At first i tried to have the config file listen on a virtual ip address i setup up in /etc/network/interface but that ended up not working so i set it to its specific ip address. I kept running into the error about script security while trying to start Openvpn. I tried to add into the config file "script-security 2" that way the up.sh and down.sh scripts were allowed to be run. That didn't help and then i kept trying to run Openvpn manually running the command
Quote:
And i kept getting a message
Quote:
So what i did was just comment out the "up" and "down" scripts in the config file. This allowed me to actually get Openvpn started on the server. So once this was done i connected form a client machine and was given an ip address like i should. The only issue is that i was not able to actually comunicate with the server. I have a samba share on there to allow me to copy files back and forth but an not able to actually communicate with the server at all. I should note that this is a web server that i can view from the outside. (actually get to the webpage) but i tried to access the website and share via the Openvpn gateway. I also tried to access the website portion using the hostname with no luck.
By the way, prior to putting the server on its separate network i was able to access the webpage and the samba share using both the ip address and the hostname.
alright so i set up dhcp server and my clients are getting ip's, can ping each other, and can ping/ssh the server. but nowhere beyond that.
however if i ping an externel site, i get its IP addr, but no pings (100% loss)
im ripping my hair out over this. i know that iptables is right, but i dont know about dns
idk if this helps:
Code:
pavel@ubuntu-server:~$ cat /etc/network/interfaces
auto lo br0 eth0 eth1
iface lo inet loopback
#mapping hotplug
[Code].....
I must be very thick as i cannot seem to get my dhcp clients to connect to the Internet properly.
on my lucid server i installed dhcp3 server and bind9, i can ping and dig all on the local network. on the clients however, as soon as i go out of the local network there's messages like "unknown host www.google.com" or "network is unreachable".
So I have a pretty big networking nightmare on my hands right now. Stepped into the dog crap with this one, told my employer that I knew how to setup vmware servers right? Its not hard, install CentOS, install vmware, run the config tool, bridge the network, down the road we all go right? We have 3 servers running about 10 virtual servers.
Here is what we have all together.
CFU <- This is the internet. We have IP ranges xx.18.230 - xx.18.241 Gateway is xx.18.254 and subnet is xx.255.128
DELL PowerConnect 3348 Switch <- This is what everything is pretty much jammed into.
VMH1 <- This machine has 2 NICs
eth0 connects to the DELL switch somewhere on the upper 30+ ports
eth1 connects to the DELL switch on port 1.
It uses firestarter and is the gateway for our internal internet on 192.168.11.XX using IP 11.254. It has 4 vm's on it. One of them is the domain controller, hooked to eth1 using IP xx.11.1. The other one is a server for managing remote backups, it has an external IP linked to eth0 of xx.18.234. The other 2 vm's are for misc remote login stations that use internal ip addresses linked to eth1. It hasn't had a single problem communicating on either one of the ports..
VMH2 <- This server hosts a web server, and some other misc stations.
It hosts a web server on xx.18.230 and xx.18.231
It also hosts 2 workstations on a seperate network, through another router that is wireless....
Now, we have the problem child, VMH3
VMH3 <- This hosts...nothing. It sits and has a ton of storage, but does absolutely nothing, but won't communicate out either one of its network ports.
The xx.36.xx and xx.22.xx networks are there because we have multiple businesses in the building that shouldn't see each other.
My Linux server which is running my company website have been hacked. Today I saw a number of clients (customers) with some fun characters entries on my database. Access denial on really clients.
View 2 Replies View RelatedI have a CentOS5 server with dual ethernet adapters + Webmin installed as my Router / Firewall / DHCP server working successfully with 1 static IP from my ISP. I also have 7 additional static IP addresses from my ISP needing to configure to individual servers inside my network. I have configured the additional virtual interfaces, but am lost on how to route data specifically from additional ISP address to specific internal network address.
Below is my desired configuration.
98.173.159.xx1 = eth0 physical interface ==> eth1 192.168.1.1
98.173.159.xx2 = eth0:1 virtual interface ==> 192.168.1.10 ==> CentOS Server 2
98.173.159.xx3 = eth0:2 virtual interface ==> 192.168.1.20 ==> CentOS Server 3
98.173.159.xx4 = eth0:3 virtual interface ==> 192.168.1.30 ==> CentOS Server 4
98.173.159.xx5 = eth0:4 virtual interface ==> 192.168.1.40 ==> Mac OS X Server 1
98.173.159.xx6 = eth0:5 virtual interface ==> 192.168.1.50 ==> Mac OS X Server 1
98.173.159.xx7 = eth0:6 virtual interface ==> 192.168.1.60 ==> Network Attached Storage Server 1
98.173.159.xx8 = eth0:7 virtual interface ==> 192.168.1.70 ==> Windows 2008 Server 1
I am stepping into Linux world ...and I have chosen CentOS.
I have installed CentOS 5.5 on a dedicated IBM server successfully. My server has two network cards. I have configured eth0 for lease line internet connection with a live IP (113.xxx.xxx.xxx) and eth1 for local LAN with a static IP (192.168.0.1).
Now,
1. DHCP is working fine and I can access the server from my Windows XP clients.
2. I can access the server with SSH client PuTTY from home ( with the live IP ) and from the local LAN (with static IP 192.168.0.1)
3. I can access my shared server directory 'public' from my XP clients
4. Internet is working on sever and I have updated the server with yum update.
But, I cannot access internet from my XP clients machines.
I read "The Definitive Guide to CentOS" and tweaked the config files in different ways but it did not help. now after two sleepless nights I am here as my last hope.
I admit, I am not aware of every linux terms and commands, but I am getting into it. code...
I have Unbuntu 2.32.1 Build date 14/4/11 I have Samba Installed I also have 8 Sata drives all with NTFS most of them have a lot of data on them. All my drives were used on an old windows 7 system, and now I wish to have them in a server setup.
My clients are all windows users apart from 1 witch is an Unbuntu desktop user. The problem I have is access rights or permissions none of the clients can gain access to my NTFS shares. I am using a GUI on my server (Gnome) as I am not very clued up with command lines in Unbuntu just yet.
How to login multiple client pc on the same network using via openvpn server from client side
View 1 Replies View RelatedSuppose I have a server, foo, that runs on port 5555. I can make one connection to it at a time on that port. I want xinetd to fork new instances of foo so multiple clients can connect to it.
Here's a configuration entry:
1) How does xinetd fork a new instance of foo when a previous instance is already listening on port 5555? Wouldn't the new process fail to launch because port 5555 is already in use by the previous process?
2) Suppose five clients connect simultaneously, and xinetd forks five instances of foo. When the clients disconnect, does xinetd leave all five instances running?
I've a fully working openvpn network but it works only using ip address.Clients should comunicate each other thought the server. To semplify the managment of clients I'd like to use their hostname instead their ip. there are a way to achieve it?Now openvpn assign ip address to the clients, but if is needed I can install other software on the server, it's a Debian machine.
View 4 Replies View RelatedThis will be a little long (having read Phil's 'how to ask questions' FAQ). I'm trying to get OpenVPN working between my CentOS server and some Windoze laptops running XP. There seems to be plenty of sample
config files available, but to date, none of them have worked for me. Pulling out my trusty Wireshark, I've found some clues,
BACKGROUND:
My local subnet (NAT'ed by my gateway router) is 192.168.52.x. My router has been configured with a conduit (port-forward) for port 1194 (the standard OpenVPN port), which points towards my CentOS server.The CentOS server is .52.112, and the supplicant is .52.110. I have tried the lient both inside and outside my local subnet, with no difference in events or outcomes.
[Code]...
i have successfully setup PPTPD on my server and I can open a VPN tunnel but my clients can only ping the server's IP, they don't have access to the internet through the VPN.
i have searched different forums and understand that I have to create a route on the server to route packets between the VPN interface and my internet gateway, but I didn't manage to get this work.
here is what my setup looks like:
Code:
root@r31495:~# ifconfig
eth0 Link encap:Ethernet HWaddr 00:1c:c0:c7:13:35
inet addr:94.23.197.XX Bcast:94.23.197.255 Mask:255.255.255.0
UP BROADCAST RUNNING MULTICAST MTU:1500 Metric:1
[Code]....
I'm using Fedora Core 11 and the client OpenVPN on the network-manager into a segmented infrastructure. It works well.
My laptop is on a dmz wireless Zone 192.168.3.0/24 and access Internet through a firewall via a front-end zone 192.168.65.0/24 with wlan0 interface.
But my laptop can access on a back-end zone 192.168.2.0.24 to a server.
When I start the OpenVPN tunnel, I cannot access on my back-end zone because the kernel routing table is modified (all the traffic is routed through the tun vpn interface)
If I define a static route like route add -host 192.168.2.x gw 192.168.3.2 where x is my file serveur, I cannot connect to this server because the routing is make through the tun interface and not by the wlan0 who can access on is gateway
I want to know where changing the kernel routing table file to access on the Internet and on my back-end zone in a same time.
Alright, I've been trying to get this fixed on my own, but I think I am missing a fundamental principle and no amount of scripts or hacks is gonna take place of that. I have adito/OpenVPN installed on my media center. It runs fine and I can access adito in my internal network from other computers just fine. But, the whole point is I want to be able to access it remotely!
Now, I had previously made a run at an external FTP site and failed miserably at that, and I think its all coming down to me not knowing how to configure my own router. I have a Netgear router, I can log into it and under Router status I can get what looks to be my routers external IP address. But if I try to access it at https://XXX.XXX.XXX.XXX:4433 (didn't want to use the default port, 443) I get nothing.
So, my main problems as I understand them are:
1)I need to clear the firewall on my router to allow traffic in/out of my reserved port
2)I need to forward incoming requests on that port to the static internal IP of my media center
3)I really would like a more reliable way to verify the info im getting from my routers admin settings page is actually my external IP, is there a command for this or a website that will tell me?
what are use cases for static ip address for clients or servers.
View 3 Replies View Relatedi have Centos 5.3 installed with TXT mode i want to create and share one folder to be accesible to me from the network, to download and share files into it with my Host, i created the folder but dont know how to share it,
View 6 Replies View RelatedI have a CentOS 5.3 box with three network interfaces in it. Each interface is attached to a separate VLAN and I want traffic to stay on each network segment.What I can�t figure out is why I cannot get each interface to have its own gateway and everything gets sent through the default gateway.The basically takes my possible 3Gb total bandwidth and throws it down a single 1Gb pipe.Then on top of that, if I take down the interface (ifdown) that has the current default gateway,I loose contact to the other two interfaces.When I look at the routes, each one of the interfaces shows the gw as 0.0.0.0 and defers to the default route. So I delete the route and try to add a new route with:
[root@testsan ~]# ip route add 10.1.15.0/24 via 10.1.15.1 dev eth2
but end up with the error:
RTNETLINK answers: Network is unreachable
[root@testsan sysconfig]# cat network
NETWORKING=yes
NETWORKING_IPV6=no[code].....
i have some problems with configuring openvpn tunnel connection to my openvpn server. I'm using static-key tcp connection. Network manager always said to me that connection could not be established. Also, when i try to run openvpn from terminal, i got some strange permissions problem:
Code:
openvpn --config config.ovpn
Mon Apr 5 15:48:37 2010 OpenVPN 2.1_rc19 i486-pc-linux-gnu [SSL] [LZO2] [EPOLL] [PKCS11] built on Oct 13 2009
Mon Apr 5 15:48:37 2010 NOTE: OpenVPN 2.1 requires '--script-security 2' or higher to call user-defined scripts or executables
Mon Apr 5 15:48:37 2010 /usr/sbin/openvpn-vulnkey -q moj.key
[code]....
I successfully installed openvpn and networkmanager openvpn plugin. Then I successfully added a PPTP vpn connection by networkmanager vpn tab which name is "vpn1". But now I don't know how to connect to this PPTP vpn connection. I tried bellow command but no luck.
openvpn --config vpn1.config
Ever need to provide access to multiple PC's and did not have a router only a hub. Maybe this isn't original thinking, but then again maybe you didn't think of doing it this way (which i am sure there are many ways to do it) So I have 2 Ubuntu Servers, 1 Windows Box and a Hub - All 3 with internet access off of single ip and single Ethernet port.
While searching for a backup method today I came across Clonezilla. I was wondering if this was the right thing for me and since I needed to backup my roommates PC for a reformat and install of Windows I decided I would give it a try, but only if it would work. I didn't want the hassle of going into the main part of the house and finding out what cord was what as there is a cable modem connected into a switch (4 static IP's with internet) and one port of the switch hooked to a router) Anyways, didn't work he was on the router I was on the switch)
But this got me thinking. When I setup my server to do this, during one of the setup scripts it said it was setting up Internet access for client machines and that it was assigning them IP addresses threw a DHCP server that it had installed.
So, I dug up the hub connected the internet cable to hub up link and Server 1 on port 1 Server 2 on port 2 and Windows on port 3 The main server gets the internet provided IP address and routes it to the hub via a virtual interface. Server 2 is configured for DHCP and the windows box, It was set to get info automatically but it didn't fill the DNS info so I had to manually do that (just a heads up) I decided to use OpenDNS Servers (208.67.222.222 & 208.67.220.220) but im sure putting in the gateway IP address would have worked too.
So, by now if you need this I am sure you are excited and want to get to it. Like i said there are probably other ways of doing it, ways that don't involve you installing clonezilla and DRBL, maybe even just DRBL is needed, maybe one of them installed whats needed as a dependency- all I know is it works, if you know - elaborate so people know, but hey- this way not only do you have internet access on all PC's you can deploy custom images to them as well.
We (like many people) have a QA environment and a production environment consisting of several servers. We want to be able to make sure before we do any yum updates on the production machines that we've tested everything in QA. Unfortunately, yum gets the latest software when you run it, so you could run it two hours apart and up with different releases of some software. We need a solution.
I *think* what I have to do is create my own yum repository. There are a variety of articles on how to do that. But before I go through all that, I wanted to make sure I was on the right track. So the process would probably end up being:
1. Create a fresh repository
2. Upgrade QA from that repository, test, etc.
3. Upgrade production from that repository
Can someone verify this is the correct approach, or is there something easier? It also seems like step 1 is going to take a significant amount of time, plus it will continue to take a significant amount of time every cycle.
We have to install centos 5.5 in approx 60 servers and we want to have a server in which we can create an image of 1 server and deploy it on all other severs through pxe. Mainly all servers will be having raid 5 or raid 1 configured. So the utility should be having the raid support.
View 1 Replies View Related